Article 29 Working Party Releases Safe Harbor Statement

Published On October 16, 2015 | By Kandi Parsons | Data Security, International
TwitterLinkedInFacebookRedditCopy LinkEmailPrint

The Article 29 Working Party released a statement outlining the implications of the court decision invalidating the US-EU Safe Harbor.

For affected businesses, the three principal takeaways from the Working Party’s Statement are:

No Grace Period

There is no grace period for companies to comply with the decision. Data transfers currently occurring under the Safe Harbor are unlawful.

No Guaranteed Grounds for Data Transfer

Standard Contractual Clauses and Binding Corporate Rules (BCRs) may be used, but use of such mechanisms for data transfers will not preclude data protection authorities from investigating cases and exercising their enforcement powers.

Enforcement After January 2016

If the US and EU do not develop a solution by the end of January 2016, the Working Party and DPAs will assess the transfer tools available and have committed to taking “necessary and appropriate” action, including coordinated enforcement.

The Working Party called upon Member states and European authorities to work with the United States to find legal and technical solutions to enable the transfer of data while respecting fundamental rights, which could include a new Safe Harbor. The statement indicated the primary issue that must be addressed by such a solution is government surveillance.


About The Author

Kandi counsels clients on privacy and data security issues, online and general advertising, and marketing practices, including COPPA compliance, student privacy, and the Internet of Things. Kandi advises companies on collecting, protecting, and using consumer data and helps them develop and implement comprehensive privacy and security programs. Drawing on her tenure at the FTC, Kandi assists clients in responding to FTC and state AG enforcement actions. Prior to joining ZwillGen, Kandi spent eight years in the FTC’s Division of Privacy and Identity Protection. While at the FTC, Kandi served on detail for six months to the United States Senate, Committee on Commerce, Science, and Transportation.

Leave a Reply

Your email address will not be published. Required fields are marked *