Showdown in Europe over privacy has U.S. firms ducking for cover

Showdown in Europe over privacy has U.S. firms ducking for cover

By Eric Auchard February 5, 2016

FRANKFURT (Reuters) - The free flow of data across the Atlantic, the lifeblood of modern business dealings, faces an uncertain future, despite a belated, high-level deal between European and U.S. officials this week.

Restive regulators in Europe are gearing up to enforce tough privacy laws and further court challenges await, activists say.

The breakdown of the main framework for providing legal cover for cross-border data transfers has companies large and small racing to find workable alternatives. These range from stricter data-handling policies to new technologies or paying to lease datcenters based in Europe.

Companies, facing renewed threats by privacy regulators, find themselves on legal thin ice with many of the existing procedures for managing cross-border data flows, experts say.

Google, Facebook and other big Internet services which transfer mountains of data globally are likely to be the first targets in any regulatory crackdown, they said.

Hailed as a "Privacy Shield" by European Union and U.S. negotiators who reached the new cross-border data sharing agreement, the deal faces a labyrinthine approval process before the new rules have any chance of coming into force.

"Once it becomes available, businesses will want to be cautious about signing up to Privacy Shield given the potential legal challenges that special interest groups have already suggested they will be considering," cautioned Marc Dautlich, a partner with Pinsent Masons in London.

TOUGH ON PRIVACY

Cross-border data transfers are used in many industries for sharing employee information, when consumer data is shared to complete credit card, travel or e-commerce transactions, or to target advertising based on customer preferences.

Since 2000, up to 4,500 U.S. companies had come to count on a simple set of rules, dubbed Safe Harbour, allowing them to self-certify they complied with privacy principles for personal data transfers from Europe to the United States. Many other firms, especially fast-growing start-ups, did nothing to comply.

In October, the European Court of Justice threw out Safe Harbour. In a landmark decision, it ruled the mechanism provided inadequate protections under European privacy laws against the sorts of spying by U.S. intelligence agencies revealed by former NSA contractor Edward Snowden in 2013.

Independent-minded national privacy regulators say they need to know more details about the so-called "Privacy Shield" but many openly doubt the agreement can bridge the gulf between the two continents' privacy practices.

"Transfers to the U.S. cannot take place on the basis of the invalidated Safe Harbour decision. EU data protection authorities will therefore deal with related cases and complaints on a case-by-case basis," Europe's national privacy regulators said in a joint statement on Wednesday.

The data commission for Schleswig-Holstein, Germany's most northern state, said it was prepared to take action on national data protection rules if citizens file complaints.

The regulator warned in October that firms found in violation of German data protection rules could face fines up to 300,000 euros ($335,000). Across the region, multi-million euro fines could be imposed on offenders and commercial transfers of personal data prohibited, privacy experts say.

SEARCHING FOR OPTIONS

An alternative form of legal compliance offered by the EU are "standard contact clauses", or "model contracts", which require companies to spell out exactly what data is being transferred to what U.S. companies and the measures to be taken to ensure compliance with European privacy law.

Some national data authorities offer what is known as "binding corporate rules" (BCRs), which companies mostly use for cross-border employee data transfers inside their organisations. But BCRs can take up to 12-18 months to be formalised, while model contracts can take days or weeks.

However, many regulators and privacy experts say that the same high court ruling that struck down Safe Harbour may also render model contracts and BCRs invalid, making them only a temporary safe haven for meeting European rules.

Using technology to keep data within Europe's borders is a longer term, if pricier solution. Leasing datacenters based in Europe rather than relying on centralised U.S. servers has started to take off over the past year or two.

https://ca.news.yahoo.com/showdown-europe-over-privacy-u-firms-ducking-cover-125849945--finance.html


Comments

Post a Comment

Popular posts from this blog

BMW traps alleged thief by remotely locking him in car

BMW traps alleged thief by remotely locking him in car Stealer's Wheel? Seattle police department quotes "Watchmen" movie in a recap of the recent arrest. Tech Culture by Gael Fashingbauer Cooper December 4, 2016 5:00 PM PST It's maybe the most satisfying arrest we can imagine. Seattle police caught an alleged car thief by enlisting the help of car maker BMW to both track and then remotely lock the luckless criminal in the very car he was trying to steal. Jonah Spangenthal-Lee, deputy director of communications for the Seattle Police Department, posted a witty summary of the event on the SPD's blog on Wednesday. Turns out if you're inside a stolen car, it's perhaps not the best time to take a nap. "A car thief awoke from a sound slumber Sunday morning (Nov. 27) to find he had been remotely locked inside a stolen BMW, just as Seattle police officers were bearing down on him," Spangenthal-Lee wrote. The suspect found a ke...
Read more

Report: World’s 1st remote brain surgery via 5G network performed in China

World’s 1st remote brain surgery via 5G network performed in China Published time: 17 Mar, 2019 13:12 ·           A Chinese surgeon has performed the world’s first remote brain surgery using 5G technology, with the patient 3,000km away from the operating doctor. Dr. Ling Zhipei remotely implanted a neurostimulator into his patient’s brain on Saturday, Chinese state-run media  reports . The surgeon manipulated the instruments in the Beijing-based PLAGH hospital from a clinic subsidiary on the southern Hainan island, located 3,000km away. The surgery is said to have lasted three hours and ended successfully. The patient, suffering from Parkinson’s disease, is said to be feeling well after the pioneering operation. The doctor used a computer connected to the next-generation 5G network developed by Chinese tech giant Huawei. The new device enabled a near real-time connection, according to Dr. Ling.  “You barely feel that th...
Read more

New ATM's: withdraw money with veins in your finger

New cash machines: withdraw money with veins in your finger Cash machine technology that reads the pattern of finger veins is already available in Japan and Poland   By Telegraph Reporters 6:59PM BST 15 May 2014 Cash machines could soon be installed with devices that identify customers by reading the veins in their fingers. The technology is already being rolled out in Poland, where 1,730 cash machines will this year be installed with readers, negating the need for a debit card and Pin. Developed by Hitachi, the Japanese electronics firm, the machines read the patterns of the veins just below the surface of the skin on your finger using infra-red sensors. The light is partially absorbed by haemoglobin in the veins to capture a unique finger vein pattern profile, which is matched to a profile. The technology is used by Japanese banks and also in Turkey, offering “groundbreaking levels of accuracy and speed of authentication”, Hitachi said, which in t...
Read more