Posted on May 27, 2010 by Rosanne Kay

German data-protection authorities decide on requirement to review Safe Harbor self-certification of U.S. data importers by the exporter

This post was written by Cynthia O'Donoghue and Katharina Weimer.

In 2000, the European Union and the U.S. Department of Commerce agreed to the Safe Harbor framework that includes principles governing the protection of personal data transferred to a U.S.-based company that self-certifies compliance to the Safe Harbor Principles. Compliance with the Principles is deemed by the EU to provide an adequate level of protection for the processing of personal data.  Transfers of personal data outside the European Economic Area are prohibited unless adequate measures to protect the data are implemented, and the Safe Harbor framework is one method ensuring adequate protection for transfers of personal data from the EU to the United States.  The Department of Commerce publishes a list on the Internet of all companies that have self-certified as Safe Harbor, including information on the status of the certification and on the type of personal data covered by the certification.

To view the entire alert, please click here.

Tags: , ,
Trackbacks (0) Links to blogs that reference this article Trackback URL
http://www.globalregulatoryenforcementlawblog.com/admin/trackback/210681
Comments (0) Read through and enter the discussion with the form at the end
Post A Comment / Question Use this form to add a comment to this entry.







Remember personal info?
Send To A Friend Use this form to send this entry to a friend via email.