scholarly journals Is Data Localization a Solution for Schrems II?

2020 ◽  
Vol 23 (3) ◽  
pp. 771-784
Author(s):  
Anupam Chander
Keyword(s):  
European Union ◽  
Data Protection ◽  
Data Transfer ◽  
Personal Data ◽  
The European Union ◽  
Personal Privacy ◽  
Court Of Justice ◽  
The Usa

ABSTRACT For the second time this decade, the Court of Justice of the European Union has struck a blow against the principal mechanisms for personal data transfer to the USA. In Data Protection Commissioner v Facebook Ireland, Maximillian Schrems, the Court declared the European Union-US Privacy Shield invalid and placed significant hurdles to the process of transferring personal data from the European Union to the USA via the mechanism of Standard Contractual Clauses. Many have begun to suggest data localization as the solution to the problem of data transfer; that is, do not transfer the data at all. I argue that data localization neither solves the problem of foreign surveillance, nor enhances personal privacy, while undermining other values embraced by the European Union.

scholarly journals ASSESSING THE IMPLICATIONS OF SCHREMS II FOR EU–US DATA FLOW

2021 ◽  
pp. 1-18
Author(s):  
Maria Helen Murphy
Keyword(s):  
European Union ◽  
Data Protection ◽  
Data Flow ◽  
Data Transfer ◽  
Personal Data ◽  
Fundamental Rights ◽  
Constant Flow ◽  
The European Union ◽  
Court Of Justice ◽  
The Eu

Abstract With the constant flow of data across jurisdictions, issues regarding conflicting laws and the protection of rights arise. This article considers the EU–US data transfer relationship in the aftermath of the decision in Data Protection Commissioner v Facebook Ireland and Maximillian Schrems where the Court of Justice of the European Union (CJEU) invalidated an EU–US data transfer agreement for the second time in just five years. This judgment continues the line of cases emphasising the high value the Court places on securing EU personal data in accordance with EU data protection standards and fundamental rights. This article assesses the implications of the ruling for the vulnerable EU–US data transfer relationship.

scholarly journals The European Union’s Passenger Name Record Data Directive 2016/681: Is it Fit for Purpose?

2017 ◽  
Vol 17 (1) ◽  
pp. 78-106 ◽  
Author(s):  
David Lowe
Keyword(s):  
European Union ◽  
Data Protection ◽  
Personal Data ◽  
The European Union ◽  
Personal Data Protection ◽  
Serious Crime ◽  
Court Of Justice ◽  
Record Data ◽  
Fit For Purpose

In 2016 the European Union (eu) introduced a Passenger Name Record Data (pnr) Directive. There has been controversy in the eu over the acquisition and sharing of pnr data, related mainly to the lack of safeguards and protection of personal data protection. This article examines these issues related to earlier eu pnr agreements with third countries and why previous eu attempts to legislate in this area failed. By drawing a comparison with the 2011 pnr Directive proposal, the article argues that by meeting the strict eu law on data protection as well as being necessary to assist in preventing and detecting acts of terrorism and serious crime it is submitted the 2016 Directive is fit for purpose and able to withstand scrutiny by the Court of Justice of the European Union.

scholarly journals ESTUDO SOBRE A REALIZAÇÃO DO DIREITO DA PROTECÇÃO DE DADOS PESSOAIS ATRAVÉS DA JURISPRUDÊNCIA DO TRIBUNAL DE JUSTIÇA DA UNIÃO EUROPEIA

2020 ◽  
Vol 29 (1) ◽  
Author(s):  
Rita De Sousa Costa
Keyword(s):  
European Union ◽  
Data Protection ◽  
Personal Data ◽  
Case Law ◽  
Legal Framework ◽  
The European Union ◽  
Personal Data Protection ◽  
Court Of Justice ◽  
European Data ◽  
Data Protection Law

[PT]No presente texto, apresentamos as grandes linhas de aplicação do direito europeu da protecção de dados conforme gizadas pela jurisprudência do TJUE, com o objectivo de demonstrar como e em que medida este Tribunal modelou – e continua a modelar – o quadro jurídico em vigor, na certeza de que aquela jurisprudência impõe um conjunto de desafios determinantes para a realização material do direito europeu da protecção de dados pessoais. [ESP]Este texto presenta las líneas generales de la aplicación de la legislación europea de protección de datos tal como se establece en la jurisprudencia del TJUE, con el objetivo de demostrar cómo y en qué medida este Tribunal ha configurado -y sigue configurando- el marco jurídico vigente, con la certeza de que la dicha jurisprudencia plantea una serie de retos cruciales para la aplicación material del derecho europeo de la protección de datos personales. [ENG]This text outlines the implementation of the European data protection law as laid down in the case-law of the Court of Justice of the European Union, with the aim of demonstrating how and to what extent the Court has shaped – and continues to shape – the current legal framework. The case-law analysed points out a plethora of challenges which are key to the implementation of the European personal data protection law.

scholarly journals L’invalidità del Safe Harbor Agreement

2018 ◽  
Author(s):  
Fabiana Accardo
Keyword(s):  
European Union ◽  
Data Protection ◽  
Personal Data ◽  
Safe Harbor ◽  
The European Union ◽  
Court Of Justice ◽  
The Us ◽  
Data Protection Law ◽  
The Impact ◽  
The Eu

The purpose of this article is that to explain the impact of the landmark decision Schrems c. Data Protection Commissioner [Ireland] - delivered on 7 October 2015 (Case C-362/2014 EU) by the Court of Justice - on the European scenario. Starting from a brief analysis of the major outcomes originated from the pronunciation of the Court of Justice, then it tries to study the level of criticality that the Safe Harbor Agreement and the subsequently adequacy Commission decision 2000/520/EC – that has been invalidated with Schrems judgment – have provoked before this pronunciation on the matter of safeguarding personal privacy of european citizens when their personal data are transferred outside the European Union, in particular the reference is at the US context. Moreover it focuses on the most important aspects of the new EU-US agreement called Privacy Shield: it can be really considered the safer solution for data sharing in the light of the closer implementation of the Regulation (EU) 2016/679, which will take the place of the Directive 95 /46/CE on the EU data protection law?

scholarly journals GDPR implementation as the main reason for the regional fragmentation in the online mediasphere

2021 ◽  
Vol 273 ◽  
pp. 08099
Author(s):  
Mikhail Smolenskiy ◽  
Nikolay Levshin
Keyword(s):  
European Union ◽  
Data Protection ◽  
Personal Data ◽  
Main Role ◽  
The European Union ◽  
Protection Measures ◽  
General Data Protection Regulation ◽  
Personal Data Protection ◽  
The Usa ◽  
General Data

The EU’s General Data Protection Regulation (GDPR) applies not only to the territory of the European Union, but also to all information systems containing data of EU’s citizens around the world. Misusing or carelessly handling personal data bring fines of up to 20 million euros or 4% of the annual turnover of the offending company. This article analyzes the main trends in the global implementation of the GDPR. Authors considered and analyzed results of personal data protection measures in nineteen regions: The USA, Canada, China, France, Germany, India, Kazakhstan, Nigeria, Russia, South Korea and Thailand, as well as the European Union and a handful of other. This allowed identifying a direct pattern between the global tightening of EU’s citizens personal data protection and the fragmentation of the global mediasphere into separate national segments. As a result of the study, the authors conclude that GDPR has finally slowed down the globalization of the online mediasphere, playing a main role in its regional fragmentation.

scholarly journals Protección de datos y privacidad. Estudio comparado del concepto y su desarrollo entre la Unión Europea y Estados Unidos

2020 ◽  
pp. 687 ◽  
Author(s):  
Itziar Sobrino García
Keyword(s):  
United States ◽  
European Union ◽  
Data Protection ◽  
Personal Data ◽  
The United States ◽  
Free Flow ◽  
The European Union ◽  
Legal Concept ◽  
Normative Development ◽  
The Usa

En el presente estudio se realiza un análisis del concepto legal de protección datos tanto a nivel normativo en la Unión Europa como en Estados Unidos, al igual que una breve visión de su evolución legislativa. El largo desarrollo teórico y normativo que ha habido en la Unión Europea deja entrever la importancia de la identidad digital de sus ciudadanos, mientras que la legislación norteamericana, más esparcida y sectorial, revela la fuerza que otorga al libre flujo de datos entre las entidades mercantiles. La importancia del presente estudio reside en que la comprensión de la concepción sobre la protección de datos en ambos sistemas, permitirá tener una mejor perspectiva sobre las debilidades y fortalezas que puedan existir en los acuerdos entre la Unión Europea y EE. UU. In the present study, an analysis of data protection as a legal concept is carried out in the European Union and in the United States, as well as a brief overview of its legislative evolution. The theoretical and normative development that has taken place in the European Union reveals the importance of the digital identity of its citizens. Nevertheless, due to the characteristics of the American legislation, the free flow of data between entities has more strength. The importance of this study lies in the fact that the understanding of the data protection concept in both systems will allow us to have a better perspective on the weaknesses and strengths that may exist in the agreements for the transfer of personal data between the European Union and the USA.

scholarly journals Compatibility of the EU and Georgian Personal Data Protection Regimes and Data Transfer

Law and World ◽  
2021 ◽  
Vol 7 (5) ◽  
pp. 40-46
Keyword(s):  
European Union ◽  
Data Protection ◽  
Data Transfer ◽  
Personal Data ◽  
Data System ◽  
Protection System ◽  
The European Union ◽  
Great Opportunity ◽  
Association Agreement ◽  
Personal Data Protection

The work discusses Personal Data Protection system under the European Union law, also Personal Data Protection in Georgia and the compatibility of those two regimes. Moreover, there were men- tioned ways how Georgia can adopt regulations and harmonize its legislation, to be compatible with the European Union Personal Data Protection regime. The work emphasized efforts of Georgia on the path of developing its Personal Data Protection system. The many citizens of Georgia don’t even have a knowledge that their Personal Data has to be defended. Although, the court practice of Georgia revealed good developing signs in this field. If before there were not any cases concerning personal data protection, today we have some good decisions regarding the personal data protection. The data transfer between the European Union and Georgia, is also implemented in the Association Agreement between the European Union and Georgia. Here as well has to be mentioned that the Association Agreement was the greatest step for Georgia, it was the great opportunity to harmonize Georgian Personal Data system with a European. Step by step, Georgia is straining to become a member of the European Union. Thus, this work is a look through past and future of Georgian and EU relations in the field of Personal Data system.

scholarly journals DEVELOPMENT OF THE PERSONAL DATA PROTECTION FRAMEWORK – WILL THE PANDEMIC BRING NEW CHANGES?

2021 ◽  
Vol 12 ◽  
pp. 59-66
Author(s):  
Marta Mackeviča ◽  
Keyword(s):  
European Union ◽  
Data Protection ◽  
Personal Data ◽  
Legal Framework ◽  
Point Of View ◽  
The European Union ◽  
Personal Privacy ◽  
General Data Protection Regulation ◽  
Complex Concept ◽  
Personal Data Protection

The General Data Protection Regulation (hereinafter – the Regulation), which entered into force on 25 May 2018 and introduced a new legal framework for the protection of personal data in the European Union, also included a number of new rights, more precise definitions and improvements in the field of personal data protection. The three‐year period has shown that the Regulation has successfully replaced Directive 95/46/EC of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement ofsuch data, but the Covid‐19 pandemic posed the question: does the Regulation sufficiently define and explain how controllers should deal with the processing of sensitive data, or in situations where employees of companies and institutions work remotely? Data protection is a complex concept that can be analyzed from both a legal and a social point of view. Traditionally, data protection has been referred to as the protection of personal privacy in the context of processes involving the use of personal data. Prior to the implementation of the Regulation, the existing rules on the protection of personal data in the European Union were not sufficiently uniform and were implemented differently in each Member State. It contributed to the development and implementation of the Regulation, in the hope that it would modernize and promote a common data protection regime, while maintaining all the basic principles of data protection that have been followed so far. Prior to the pandemic, the Regulation successfully achieved its original objectives, but hasthe pandemic necessitated a revision of the Regulation? This article will analyze the development of the legal framework for the protection of personal data and analyze the compliance of the Regulation with the requirements arising from the effects of the pandemic.

scholarly journals The European Union’s Passenger Name Record Data Directive 2016/681: Is It Fit for Purpose?

2016 ◽  
Vol 16 (5) ◽  
pp. 856-884 ◽  
Author(s):  
David Lowe
Keyword(s):  
European Union ◽  
Data Protection ◽  
Personal Data ◽  
The European Union ◽  
Personal Data Protection ◽  
Serious Crime ◽  
Court Of Justice ◽  
Record Data ◽  
Fit For Purpose

In 2016 the eu introduced a Passenger Name Record data (pnr) Directive. In the eu there has been controversy over the acquisition and sharing of pnr data, related mainly to lack of safeguards and protection of personal data protection. This Article examines these issues related to earlier eu pnr agreements with third countries and why previous eu attempts to legislate in this area failed. By drawing a comparison with the 2011 pnr Directive proposal, the Article argues that by meeting the strict eu law on data protection as well as being necessary to assist in preventing and detecting acts of terrorism and serious crime it is submitted the 2016 Directive is fit for purpose and able to withstand scrutiny by the Court of Justice of the European Union.

Sign in / Sign up

Export Citation Format

Share Document