Tuesday, Sep 29, 2020 | Last Update : 06:52 AM IST

188th Day Of Lockdown

Maharashtra1339232103001535571 Andhra Pradesh6756746050905708 Tamil Nadu5808085251549313 Karnataka5755664622418582 Uttar Pradesh3870853258885594 Delhi2711142366515235 West Bengal2474252169214781 Odisha209374173571850 Telangana1872111564311107 Bihar178882164537888 Kerala175385117917678 Assam169985139977655 Gujarat1332191132403417 Rajasthan1288591077181441 Haryana1237821059901307 Madhya Pradesh117588932382207 Punjab107096840253134 Chhatisgarh9856566860777 Jharkhand7770964515661 Jammu and Kashmir69832495571105 Uttarakhand4533233642555 Goa3107125071386 Puducherry2548919781494 Tripura2412717464262 Himachal Pradesh136799526152 Chandigarh112128677145 Manipur9791760263 Arunachal Pradesh8649623014 Nagaland5768469311 Meghalaya5158334343 Sikkim2707199431 Mizoram178612880
  Technology   In Other news  16 Jul 2020  EU-US data pact does not conform to GDPR: Top EU court junks privacy infringing deal

EU-US data pact does not conform to GDPR: Top EU court junks privacy infringing deal

AP
Published : Jul 16, 2020, 5:21 pm IST
Updated : Jul 16, 2020, 6:30 pm IST

It will no longer be assumed that tech firms like Facebook will adequately protect European users’ privacy when it sends it to the US.

Max Schrems, an Austrian activist whose complaints about the handling of his Facebook data triggered the ruling after years of legal procedures, first filed a complaint in 2013, after former US National Security Agency contractor Edward Snowden revealed that the American government was snooping on people’s online data and communications.
 Max Schrems, an Austrian activist whose complaints about the handling of his Facebook data triggered the ruling after years of legal procedures, first filed a complaint in 2013, after former US National Security Agency contractor Edward Snowden revealed that the American government was snooping on people’s online data and communications.

London: The European Union’s top court ruled Thursday that an agreement that allows thousands of companies _ from tech giants to small financial firms _ to transfer data to the United States is invalid because the American government can snoop on people’s data.

The ruling to invalidate Privacy Shield will complicate business for some 5,000 companies, and it could require regulators to vet any new data transfers to make sure Europeans’ personal information remains protected according to the EU’s stringent standards.

 

It will no longer simply be assumed that tech companies like Facebook will adequately protect the privacy of its European users’ data when it sends it to the U.S. Rather, the EU and U.S. will likely have to find a new agreement that guarantees that Europeans’ data is afforded the same privacy protection in the U.S. as it is in the EU.

Privacy activists hailed the court ruling as a major victory, while business groups worried about the potential to disrupt commerce, depending on how the ruling is implemented. Companies like Facebook routinely move such data among their servers around the world and the practice underpins billions of dollars in business.

 

“It is clear that the U.S. will have to seriously change their surveillance laws, if U.S. companies want to continue to play a major role on the EU market,” said Max Schrems, an Austrian activist whose complaints about the handling of his Facebook data triggered the ruling after years of legal procedures.

He first filed a complaint in 2013, after former U.S. National Security Agency contractor Edward Snowden revealed that the American government was snooping on people’s online data and communications. The revelations included detail on how Facebook gave U.S. security agencies access to the personal data of Europeans.

Though the legal case was triggered by concerns over Facebook in particular, it could have far-reaching implications not only for tech companies but also businesses in sectors like finance and the auto industry.

 

Things like email, flight and hotel reservations would not be affected in the short term, experts say. Cloud services by providers like Microsoft will also continue, pending any intervention from a regulator.

Companies use legal mechanisms called standard contractual clauses that force businesses to abide by strict EU privacy standards when transferring messages, photos and other information. The clauses _ which are stock terms and conditions _ are used to ensure the EU rules are maintained when data leaves the bloc.

The Court of Justice of the EU ruled Thursday that those clauses are still valid in principle. However, it declared invalid the Privacy Shield agreement between the U.S. and EU on data transfers over concerns that the U.S. can demand access to consumer data for national security reasons.

 

It said that in cases where there are concerns about data privacy, EU regulators should vet, and if needed block, the transfer of data. That raises the prospect that EU regulators will block Facebook, for example, from transferring any more European data to the U.S.

The court noted in its ruling that there are “limitations on the protection of personal data arising from the domestic law of the United States on the access and use by U.S. public authorities of such data transferred from the European Union to that third country.”

Government surveillance of personal data is something the U.S. in its turn accuses China of doing through tech companies like Huawei. It highlights the growing importance of data as the basis of modern business and politics globally.

 

Data drives much of the world’s biggest companies, like Facebook, Google, Alibaba and Amazon, and is also prized for national security to prevent extremist attacks, for example. Mining large sets of people’s data has also become crucial to winning elections, such as the use of Facebook data for Donald Trump’s presidential victory in 2016.

Alexandre Roure, a senior manager at Computer & Communications Industry Association, said the decision “creates legal uncertainty for the thousands of large and small companies on both sides of the Atlantic that rely on Privacy Shield for their daily commercial data transfers.

“We trust that EU and U.S. decision-makers will swiftly develop a sustainable solution, in line with EU law, to ensure the continuation of data flows which underpins the trans-Atlantic economy.”

 

Tags: us-eu, data privacy, data protection, gdpr, european union (eu)