Despite an agreement in principle, the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs (LIBE) advised against signing the proposed US data transfer pact due to the adequate protection.
EU President Ursula von der Leyen and US President Joe Biden had previously reached an agreement on how data transfers between the US and EU member states should be carried out in order to comply with existing protections such as the General Data Protection Regulation (GDPR).
Despite this, LIBE says that the Data Privacy Framework (DPF) does not quite meet the strict standards of the GDPR and that its further development should be halted until “meaningful reforms are introduced”.
EU-US Privacy Framework
LIBE declared in his Draft motion for a resolution (opens in new tab) that the DPF:
“… fails to establish actual equivalence of protection levels; [and that it] calls on the Commission to continue negotiations with its US counterparts with a view to establishing a mechanism that will ensure such equivalence and provide the adequate level of protection required by Union data protection law and the interpretation of the Charter [European Court of Justice]“.
It is also noted that the US does not have a federal law on data protection and that the executive order can be changed at any time by the US President: either Joe Biden or his successor.
The order does not extend, among other things, to data accessed by public authorities in other ways, nor does it apply to commercial data purchases or voluntary data sharing agreements.
Regardless of the format of the DPF agreement, EU-based companies can share personal data with US companies without having to consider additional protections. However, the exact format of this DPR appears to be just a few steps away from finalization, meaning transatlantic companies will have to wait even longer.
Source: www.techradar.com
Don’t miss interesting posts on Famousbio