Links:
- Magazine: https://edition.pagesuite-professional.co.uk/html5/reader/production/default.aspx?pubname=&edid=e21bbddd-4dfe-4001-a890-a5c0ac0d1a46
- Web: https://the-european.eu/story-21121/keeping-intrusion-from-big-tech-at-bay.html
- LinkedIn: https://www.linkedin.com/posts/the-european-magazine_keeping-intrusion-from-big-tech-at-bay-activity-6720271312192909312-5NLo/
- Facebook: https://www.facebook.com/TheEuropeanMag/posts/2685101041818534
- Twitter: https://twitter.com/EuropeanMag/status/1314505350163427328
Looking back just a few months ago one of the important legal decisions of note was the Court of Justice of the European Union ruling in the “Schrems II” case where the court invalidated the Privacy Shield framework for the transfer of data from the EU to the US. This was five years after the “Schrems I” case which invalidated the previous framework Safe Harbor. The decision was based on the overreaching powers of US surveillance which ultimately erodes the data protection rights of EU citizens. The second element to the case was the confirmation that the Standard Contractual Clauses mechanism for data transfer was deemed legal. In the immediate aftermath of the decision, European and US businesses scrambled to understand the impact of this decision and looked for possible alternative solutions such as those available in A49 of GDPR. Only time will tell if the disruption is temporary or permanent.
What is fascinating about this case is the growing influence and power of the “new” EU data protection law, which is quickly becoming the global standard in data protection. Countries around the world are adopting this framework which is beginning to have serious implications of big tech organisations such as the global US social media companies. Not only is the possibility of incurring large fines such as the highly publicised 4% of global annual revenues under GDPR a concern, but sanctions that can have an immediate effect on business arrangements to restrict their operations is surely a big worry for their shareholders. EU citizens data protection rights versus big tech global dominance, US surveillance, new technology intrusive capabilities, are all various perspectives one could view the current developments.
I’m excited to see how our rights will be protected and enforced in this new “GDPR world”. We must support and properly finance our European and local data protection regulators to achieve this.
We must not forget “Brexit” too. The UK is only a few weeks away from the end of the transition period arrangements with the EU. Will the EU give the UK the “adequacy” status (recognising the equivalence of its data protection law to GDPR law) so badly needed to avoid yet another big headache for UK businesses, already reeling from Corvid-19 disruption? Jersey too will shortly have its adequacy status reviewed by the EU and there will no doubt be a spot light shone on our data transfer arrangements with the UK and our ability to implement effective data protection rights of not only Jersey citizens but also European citizens going forwards. More exciting times ahead !
It will be fascinating to see how it pans out, which is why at BeSecure we help businesses and organisations understand what impact legal developments like this will have. We’re here to help you respond and offer support with the on-going compliance and to help make data protection and data privacy an integral part of your business’s DNA.