Cross-Border Data Flow

The Centre for Information Policy Leadership at Hunton and the Data Security Council of India have published a report on “Enabling Accountable Data Transfers from India to the United States under India’s Proposed Personal Data Protection Bill,” which highlights the importance of continued flows of data between India and the U.S. following the expected passage of new comprehensive data protection legislation in India.
Continue Reading CIPL and DSCI Publish Report on Enabling U.S.-India Data Transfers

On July 16, 2020, the Court of Justice of the European Union issued its landmark judgment in the Schrems II case, concluding that the Standard Contractual Clauses issued by the European Commission for the transfer of personal data to data processors established outside of the EU are valid. Unexpectedly, the Court invalidated the EU-U.S. Privacy Shield framework.
Continue Reading BREAKING: Unexpected Outcome of Schrems II Case: CJEU Invalidates EU-U.S. Privacy Shield Framework but Standard Contractual Clauses Remain Valid

In a case that has garnered widespread interest, the Court of Justice of the European Union will deliver its judgement in the Schrems II case (case C-311/18) on July 16, 2020, determining the validity of the controller-to-processor Standard Contractual Clauses as a cross-border data transfer mechanism under the GDPR.
Continue Reading CJEU’s Judgment on Validity of EU Standard Contractual Clauses Due July 16, 2020

The U.S. International Trade Administration recently announced that NCC Group has been approved as an Accountability Agent under the APEC CBPR. The Centre for Information Policy Leadership at Hunton Andrews Kurth LLP has published a Q&A on the APEC CBPR and PRP systems.
Continue Reading APEC Endorses Third U.S. CBPR Accountability Agent