Skip to main content

EU-US Safe Harbor Data Flow Talks Still Sticking On Surveillance

Image
By

As the three-month deadline for Europe and the U.S. to agree a new transatlantic data transfer deal looms, EC officials are briefing that the U.S. needs to do more to improve transparency around its government mass surveillance programs in order to secure an agreement.
The prior fifteen-year-old Safe Harbor executive decision was struck down by the European Court of Justice last October on data protection grounds, invalidating data transfers legalized under the old regime and leaving businesses scrambling to comply with the various alternative mechanisms left to them to govern data-sharing activity between Europe and the U.S.
Although all sorts of businesses have used Safe Harbor to govern data flows, many U.S. Internet companies offering service in Europe are affected — given the typical cloud business structure involves harvesting users’ data and moving it to another region for processing.
Giving a speech in Brussels yesterday, VÄ•ra Jourová, the European commissioner for Justice, Consumers and Gender Equality, reiterated that the EU needs guarantees from the U.S. that principles of necessity and proportionality would be applied when authorities request data from private companies.
“We need guarantees that there is effective judicial control of public authorities’ access to data for national security, law enforcement and public interest purposes,” Reuters quotes Jourova as saying. Discussions between EC officials and their American counterparts are taking place in Davos this week, on the margins of the World Economic Forum.
State agencies’ access to data has been a long-standing sticking point for the Safe Harbor renegotiations, which have been ongoing since 2013 — when NSA whistleblower Edward Snowden revealed the extent of U.S. government agencies’ access to commercial data.
The ECJ ruling made the challenge for securing a new deal more explicit, given the judgment flags mass surveillance as in conflict with fundamental European data protection rights — rights which will be strengthened by a new data protection directive agreed at the end of last year and due to come into force from 2018.
Last November, Jourová said the EC is “strongly following” developments in the U.S. regarding surveillance and national intelligence reform — describing the USA Freedom Act, which has sought to place limits on government mass surveillance programs, as “good progress” on this front.
However, also speaking last fall, Commissioner Andrus Ansip suggested the U.S. will in fact need to legislate for enhanced data protection if it wants to secure a new agreement on European data transfers. “It is up to lawyers to say what exactly will be needed but I think that a legally binding administrative decision will be needed to make this Safe Harbor 2.0 Safe Harbor bulletproof according to my understanding,” he said at the time.
Yesterday, discussing the current state of negotiations, Jourova said the EC is seeking more transparency on the limits U.S. security services have for collecting personal data.
According to Reuters’, one sticking point is U.S. resistance to a mandatory system for companies to report numbers of U.S. government access requests. One mooted alternative is for the U.S. to supply data on how often its authorities are accessing personal data on national security grounds as part of an annual review.
Time is clearly running out to seal a deal by the deadline imposed by the EC last autumn — with less than two weeks before the Commission’s end of January deadline expires.
Earlier this week Politico reported a deal by the end of the month is looking unlikely, citing sources close to the negotiations saying an agreement by January 31 is “unrealistic”.
If no new Safe Harbor deal is in place by January 31, it is possible that European data protection agencies could start taking enforcement action against companies judged to be no longer in compliance with European privacy law. And here state surveillance activity is again problematic — with Facebook, for example, already the subject of several updated privacy complaints on this ground, filed by campaigner Max Schrems at the end of last year.
Last week U.S. and European trade groups warned of potentially “enormous” consequences for “thousands of businesses and millions of users” if a “comprehensive and sustainable” transatlantic data share agreement is not reached by the end of the month.
There are alternative mechanisms available governing EU-US data transfers in the current Safe Harbor-less limbo, however it’s clear business groups do not relish this more complex data-sharing compliance scenario, nor the increased risk of enforcement action by national DPAs from next month.

Comments

Post a Comment

Popular posts from this blog

Best Web Design Company in Pondicherry

By
#Technology    has two faces. We all feel it, but sometimes can’t find words to describe it.  #Ebooks    are the best example to show the 0-1 nature of emotions the  #technology  evokes. #itwhere    provide a  #Best     #solutions    to  #Growyourbusiness    feel free to drop a  #Mail    info@itwheretech.co.in www.itwheretech.co.in 
5 comments
Read more

Phoenix OS is (another) Android-as-a-desktop

By
Google Android may have been developed as a smartphone operating system (and later ported to tablets, TVs, watches, and other platforms), but over the past few years we’ve seen a number of attempts to turn it into a desktop operating system. One of the most successful has been  Remix OS , which gives Android a taskbar, start menu, and an excellent window management system. The Remix OS team has also generated a lot of buzz over the past year, and this week the operating system gained a lot of new alpha testers thanks to a  downloadable version of Remix OS  that you can run on many recent desktop or notebook computers. But Remix OS isn’t the only game in town.  Phoenix OS  is another Android-as-desktop operating system, and while it’s still pretty rough around the edges, there are a few features that could make it a better option for some testers. Some background I first discovered Phoenix OS from  a post in the Remix OS Google Group , although I’ve also found mentions of th
3 comments
Read more

South Korea aims for startup gold

By
Back in 2011, when South Korea won its longshot bid to host the 2018 Winter Olympics, the country wasn’t widely recognized as a destination for ski and snow lovers. It wasn’t considered much of a tech startup hub either. Fast forward seven years and a lot has changed. For the next 10 days, the eyes of the world will be on the snowy slopes of PyeongChang. Meanwhile, a couple of hours away in Seoul, a burgeoning startup scene is seeing investments multiply, generating exits and even creating a unicorn or two. While South Korea doesn’t get a perfect score as a startup innovation hub, it has established itself as a serious contender. More than half a billion dollars annually has gone to seed through late-stage funding rounds for the past few years. During that time, at least two companies, e-commerce company Coupang and mobile-focused content and commerce company Yello Mobile, have established multi-billion-dollar valuations. To provide a broader picture of how South Korea stacks
Post a Comment
Read more

So, when will your device actually get Android Oreo?

By
Google officially just took the wraps off of Android Oreo, but there are still some questions left to be answered — most notably, precisely when each device will be getting the latest version of the mobile operating system. Due to Android’s openness and a variety of different factors on the manufacturing side, it’s not an easy question to answer, but we’ll break it down best we can. First the good news: If your device was enrolled in the Android Beta Program, you’ll be getting your hands on the final version of the software “soon,” according to Google. Exactly what that means remains to be seen, but rest assured that you’ll be one of of the first people outside of Google to take advantage of picture-in-picture, notification dots and the like. No big surprise, Google handsets will be the first non-beta phones to get the update. The Pixel, Nexus 5X and 6P are at the top of the list, alongside Pixel C tablet and ASUS’s Nexus Player set-top box, which will be receiving the upgrade i
Post a Comment
Read more

Uber, Google and other tech employees form Coalition of Black Excellence

By
When black employee resource groups from a variety of tech companies come together, black magic happens. More specifically, black excellence happens. The Coalition of Black Excellence Week, spearheaded by Uber Litigation Counsel Angela Johnson in collaboration with black ERGs from over 40 tech companies like Facebook, Google, eBay, Lyft and Microsoft, kicks off this Monday in the San Francisco Yay (Bay) Area. The idea for CBE Week came in part from Johnson’s experiences living in Washington D.C., and being able to attend events put on by the Congressional Black Caucus, she told me at Uber’s headquarters this week. “When I moved out to the Bay Area, I really wished there were similar types of experiences for tech,” Johnson said. “And I thought if we could bring together different black ERGs, or diversity and inclusion committees, or people who were interested in some of the issues the black community is passionate about, a lot of positive change and impact could come from that.
Post a Comment
Read more