Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Privacy

EU Launches Controversial Internet Privacy Deal With U.S.

The European Union on Tuesday launched a controversial deal with the United States aimed at curbing government spying on the personal internet information of European citizens.

The European Union on Tuesday launched a controversial deal with the United States aimed at curbing government spying on the personal internet information of European citizens.

The deal replaces one struck down by the EU’s top court in October, a decision which left firms like Google and Facebook in legal limbo over whether they could transfer data to their US headquarters.

The court struck down that deal based on an Austrian activist’s case against Facebook in Ireland, and its judgment cited US snooping practices exposed by former intelligence contractor Edward Snowden.

“The EU-US Privacy Shield is a robust new system to protect the personal data of Europeans and ensure legal certainty for businesses,” said EU Justice Commissioner Vera Jourova, launching the deal with US Commerce Secretary Penny Pritzker in Brussels.

The deal will take effect within hours once EU member states are formally notified, European officials told AFP.

Privacy ‘milestone’ 

“The approval of the privacy deal is a milestone for privacy at a time when the sharing of data is driving growth in every sector,” Pritzker told a press conference with Jourova.

The deal will “facilitate more trade across our borders, more collaboration across the Atlantic and more job creating investments in our communities,” Pritzker said.

Advertisement. Scroll to continue reading.

Jourova insisted the deal offers the “highest standards” to protect the personal data of EU citizens.

But critics say it amounts to “a little upgrade” over the previous arrangement, called Safe Harbour.

Austrian internet activist Max Schrems, who brought the original case against Facebook, said the new deal was likely to face fresh legal challenges.

Bad for users

“This deal is bad for users,” Schrems said in a statement on Tuesday, adding that it was the result of pressure from Washington.

The old agreement effectively meant that Europe treated the United States as a safe destination for Internet data on the basis that Brussels and Washington adhered to similar standards.

Safe Harbor was declared “invalid” by the European Court of Justice, citing National Security Agency documents leaked by Snowden in 2013.

Top US companies including Facebook, Google and Microsoft in particular have been eager to end the legal void, because they transfer data from their European subsidiaries to their headquarters in the United States.

The deal includes commitments by the US to limit the use of bulk-collected intelligence, the appointment of a US ombudsman to deal with complaints by European citizens, and fines for firms that do not comply.

The deal will also be subject to an annual review.

But activists and European lawmakers are highly critical. They call the deal still highly deficient in terms of protection from US government access to data, as well as safeguards from bulk data collection.

The European Parliament in May asked the EU to continue negotiating with the United States for a better deal.

It said the proposed US ombudsman to deal with complaints by European citizens would neither be “sufficiently independent” nor have enough powers to act.

But Markus Beyrer, director general of Brussels-based BusinessEurope, said the deal “will enhance legal certainty for thousands of businesses on both sides of the Atlantic while providing an adequate level of protection for citizens’ data.”

The members of Industry group DIGITALEUROPE are “ready to begin the re-certification process” through the US department of Commerce when it begins on August 1, communications director Paul Meller told AFP.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Privacy

Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...

Privacy

Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source...

Application Security

Open banking can be described as a perfect storm for cybersecurity. At one end, small startups with financial acumen but little or no security...

Mobile & Wireless

As smartphone manufacturers are improving the ear speakers in their devices, it can become easier for malicious actors to leverage a particular side-channel for...

Government

The proposed UK Online Safety Bill is the enactment of two long held government desires: the removal of harmful internet content, and visibility into...