ARTICLE
11 July 2023

U.S. Fulfills Its Commitments To Implement The EU-U.S. Data Privacy Framework

WR
Wiley Rein

Contributor

Wiley Rein logo
Wiley is a preeminent law firm wired into Washington. We advise Fortune 500 corporations, trade associations, and individuals in all industries on legal matters converging at the intersection of government, business, and technological innovation. Our attorneys and public policy advisors are respected and have nuanced insights into the mindsets of agencies, regulators, and lawmakers. We are the best-kept secret in DC for many of the most innovative and transformational companies, business groups, and nonprofit organizations. From autonomous vehicles to blockchain technologies, we combine our focused industry knowledge and unmatched understanding of Washington to anticipate challenges, craft policies, and formulate solutions for emerging innovators and industries.
Explore
On July 3, 2023, U.S. Secretary of Commerce Gina Raimondo announced that the U.S. fulfilled its commitments that were prerequisites to the implementation of the EU-U.S. Data Privacy Framework (Framework).
United States Privacy
Photo of Joan Stewart
Photo of Tyler Bridegan
Authors
To print this article, all you need is to be registered or login on Mondaq.com.

On July 3, 2023, U.S. Secretary of Commerce Gina Raimondo announced that the U.S. fulfilled its commitments that were prerequisites to the implementation of the EU-U.S. Data Privacy Framework (Framework). These steps are expected to allow the EU to move forward with the adoption of an adequacy decision for the Framework. The steps taken by the U.S. were two-fold. First, on June 30, 2023, U.S. Attorney General Merrick Garland designated the European Union (EU) and three additional countries that make up the European Economic Area (EEA) as 'qualifying states' for purposes of implementing the redress mechanism established under President Biden's Executive Order on Enhancing Safeguards for U.S. Signals Intelligence Activities (Executive Order). This designation will take effect on the date the European Commission adopts the adequacy decision. Then, on July 3, 2023, the Office of the Director of National Intelligence (ODNI) confirmed that the U.S. Intelligence Community had adopted policies and procedures pursuant to the Executive Order. These policies took effect on June 30, 2023.

This announcement brings U.S. and EU businesses one step closer to having an additional legal mechanism, other than Standard Contractual Clauses or Binding Corporate Rules, for transfers of personal information from the EU to the U.S.; an option that has not existed since the Privacy Shield was invalidated by the Court of Justice for the EU in 2020.

In the coming weeks, the European Commission is expected to adopt the adequacy decision for the Framework. Once the adequacy decision is finalized, the U.S. Department of Commerce will (i) provide information on how U.S. businesses that currently are not covered under the Privacy Shield can self-certify to the new Framework, and (ii) provide guidance to those companies that continued to adhere to the Privacy Shield Principles during the past three years.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

Authors
Photo of Joan Stewart
Joan Stewart
Photo of Tyler Bridegan
Tyler Bridegan
See More Popular Content From

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More