Privacy Shield: The EU-U.S. Privacy Shield was a framework established to facilitate the lawful transfer of personal data from the European Union to the United States. It provided companies with a mechanism to comply with EU data protection requirements. However, the Privacy Shield was declared invalid by the European Court of Justice in 2020, and organizations must now use alternative legal mechanisms like Standard Contractual Clauses (SCCs) or Binding Corporate Rules (BCRs) for such data transfers.
Categories: CC D1: Security Principles | CCSP D6: Legal - Risk and Compliance | CISM D1: Information Security governance | CISSP D1: Security and Risk Management | Security+ D5: Security Program Management and Oversight | SSCP D3: Risk Identification Monitoring and Analysis
Related Articles: