The proposed EU-U.S. Data Privacy Framework (DPF) has hit yet another stumbling block on its road to an adequacy decision and toward opening back up the free flow of personal data from the EU to the United States without the need for standard contractual clauses or other mechanisms.
While the European Data Protection Board (EDPB) recognized the steps taken by the United States toward proportionality and necessity in U.S. intelligence gathering and the new redress mechanism set forth in President Biden's executive order, the EDPB expressed additional concerns that the DPF did not go far enough. They recommended that clarifications be made and concerns addressed so that the adequacy decision (if there is one) will endure. They also recommended that the adequacy decision be subject to review at least every three years.
All this comes on top of the Biden administration urging the U.S. Congress to renew the Foreign Intelligence Surveillance Act (FISA) Section 702, which is often pointed at as compromising the privacy rights of European data subjects.
/Passle/63109459f636e905f41c4854/SearchServiceImages/2024-04-23-13-47-57-148-6627bc0d160531884bcd37b9.jpg)
/Passle/63109459f636e905f41c4854/SearchServiceImages/2024-04-16-11-46-04-305-661e64fc344c3be38356fa4c.jpg)
/Passle/63109459f636e905f41c4854/SearchServiceImages/2024-04-16-01-54-51-994-661dda6b631126c32d23b18c.jpg)
/Passle/63109459f636e905f41c4854/SearchServiceImages/2024-04-11-23-00-11-483-66186b7b107637cec4ac91d6.jpg)