The US Department of Commerce announced that it will begin accepting applications for Privacy Shield certifications beginning on August 1.

For US organizations collecting personal data from the EU, the past year has been an anxious one, as the European Court of Justice invalidated the EU-US Safe Harbor program in October 2015 and the terms of a far-reaching General Data Protection Regulation (GDPR) have been promulgated to replace the EU’s 1995 Data Protection Directive. Among other things, one of the major impacts of the GDPR – when it takes effect in May 2018 – is that it will apply to US businesses that sell to, make services available to or somehow target data subjects in the EU – even if those US businesses have no operations or affiliates in the EU. With the GDPR looming, the issue of cross border data transfers and the significance of the Privacy Shield program for US businesses are likely to become even more relevant.
Continue Reading Privacy Shield is final: What it means for businesses