Sidley Resource
International Data Transfers: The EU-U.S. Privacy Framework and Other Transfer Mechanisms
Welcome to Sidley’s International Data Transfers: The EU-U.S. Privacy Framework. These materials retrace the path to the current EU-U.S. Data Privacy Framework finalized in mid-2023. In addition, we provide the U.S. Department of Commerce materials pertaining to certification.
Resources
-
EDPB Report on the First Review of the European Commission Implementing Decision on the Adequate Protection of Personal Data under the EU-U.S. Data Privacy Framework
-
EU-U.S. Data Privacy Framework: Report of the Commission on How the Framework Is Functioning
-
Swiss Federal Council announcement, Swiss-US Data Privacy Framework: Certified US companies offer adequate protection for personal data
-
EDPS Decision on the EDPS Model Administrative Arrangement for Transfers of Personal Data Under Regulation (EU) 2018/1725 from European Union Institutions, Bodies, Offices and Agencies to International Organisations
-
EU-U.S. Data Privacy Framework F.A.Q. for European Businesses, July 16, 2024
-
Guidelines 01/2023 on Article 37 Law Enforcement Directive
-
Memorandum in Support of Designation of Switzerland as a Qualifying State Under Executive Order 14086 June 2024
-
Attorney General Designation of Switzerland - Designation Pursuant to Section 3(f) of Executive Order 14086
-
EU-Japan: The Council Approves a Protocol to Facilitate Free Flow of Data
-
Global CAPE, a practical multilateral mechanism for Privacy Enforcement Authorities (PEA) to cooperate in cross-border data protection and privacy enforcement. It does this by creating a framework under which Privacy Enforcement Authorities may, on a voluntary basis, share information and request and render assistance in certain ways.
-
Global Privacy Forum Documents Collection
-
Global CPR Forum Announces the Establishment of the Global CBPR and Global PRP Systems and Welcomes New Global CPA Participants, April 30, 2024. Approving New Accountability Agents, Japan, Korea, Singapore, Chinese Taipei, United States
-
Global Cross-Border Privacy Rules (CBPR) Declaration, April 21, 2022, Canada, Japan, the Republic of Korea, the Philippines, Singapore, Chinese Taipei, and the United States of America
-
Information Note on Data Transfers Under the GDPR to the United States After the Adoption of the Adequacy Decision on 10 July 2023
-
Rules of Procedure on the Cooperation and Respective Roles of National SAs and the EDPB Secretariat Regarding the Submission of Complaints in the Redress Mechanism Available to EU Individuals in Relation to Alleged Violations of U.S. Law With Respect to Their Data Collected by U.S. Authorities Competent for National Security
-
Template Complaint Form to the U.S. Office of the Director of National Intelligence’s Civil Liberties Protection Officer
-
Rules of Procedure for the “Informal Panel of EU DPAs” According to the EU-U.S. Data Privacy Framework
-
UK Information Commissioner’s Office: Completing a Transfer Risk Assessment When Transferring Personal Information to the U.S. Using an Article 46 Transfer Mechanism
-
EU-U.S. Data Privacy Framework Principles Issued by the U.S. Department of Commerce
-
Attorney General Designation of the United Kingdom as a “Qualifying State”
-
The UK Government’s Assessment of Adequacy for the UK Extension To the EU-U.S. Data Privacy Framework for the General Processing of Personal Data
-
UK-U.S. Data Bridge: Explainer
-
Analysis of the UK Extension to the EU-U.S. Data Privacy Framework
-
Published EU Implementing Decision of 10 July 2023 – Adequate Level of Protection under EU-U.S. Data Privacy Framework
-
United States Attorney General September 18, 2023 Designation of the United Kingdom as Qualifying State
-
U.S. Department of Commerce Data Privacy Framework Home Page
-
Questions & Answers: EU-U.S. Data Privacy Framework
-
U.S. Department of Justice – Office of Civil Liberties, Data Protection Review Court, Executive Order 14086 – Website
-
Federal Register – Enhancing Safeguards for United States Signals Intelligence Activities – Executive Order 14086October 7, 2022
-
White House Fact Sheet: President Biden Signs Executive Order to Implement the European Union-U.S. Data Privacy FrameworkOctober 7, 2022
-
Data Protection Review Court (DPRC) Final Rule: 28 CFR Part 201
-
Data Privacy Framework – Website: European DPA Liaison at U.S. Dept. Commerce
-
U.S. Department of Justice Memorandum in Support of Designation of the European Union and Iceland, Liechtenstein and Norway as Qualifying States Under Executive Order 14086
-
Office of Director of National Intelligence Releases Intelligence Community Procedures Implementing New Safeguards In Executive Order 14086
-
U.S. Designation Pursuant to Section 3(f) of Executive Order 14086
-
European Commission Adequacy Decision: Website
-
Press Release: U.S. Departments of Justice and CommerceJuly 17, 2023
-
European Commission Adopts New Adequacy Decision for Safe and Trusted EU-U.S. Data Flows
-
European Commission Implementing DecisionJuly 10, 2023
-
European Commission Fact Sheet: EU-U.S. Data Privacy Framework
-
EU-U.S. Data Protection Umbrella AgreementMay 26, 2016
-
European Commission and U.S. Joint Statement on Trans-Atlantic Data Privacy FrameworkMarch 25, 2022
Insights
-
BlogsWebinar Recording: The Finalization of the EU-U.S. Data Privacy FrameworkJuly 20, 2023 Data Matters
-
BlogsEU-U.S. Adequacy Once AgainJuly 12, 2023 Data Matters
-
BlogsPrivacy Shield: Essentially EquivalentJuly 2016 Data Matters
Sidley Blog
Stay Up To Date