I have produced a new Privacy Shield training course that provides a short introduction to the EU-US Privacy Shield Framework. Privacy Shield is an arrangement reached between the EU and US for companies to transfer data about EU citizens to the US. Privacy Shield replaces the Safe Harbor Arrangement, which was invalidated in 2015 in the case of Schrems v. Data Protection Commissioner.
Similar to the Safe Harbor Arrangement, Privacy Shield consists of 7 principles, which remain largely the same. The principles have been made stricter, especially the parts about accountability, redress, and enforcement.
The course is about 7 minutes long, and it discusses the purpose and origin of Privacy Shield and the key Privacy Shield principles:
- Accountability for Onward Transfer
- Data Integrity and Purpose Limitation
- Recourse, Enforcement, and Liability
The course also emphasizes the importance of complying with Privacy Shield and explains the consequences for failing to do so.
If you’re interested, you can see the course by submitting a request for an evaluation login. Please use the form at the bottom of the Privacy Shield training course page.
* * * *
This post was authored by Professor Daniel J. Solove, who through TeachPrivacy develops computer-based privacy training, data security training, HIPAA training, and many other forms of awareness training on privacy and security topics. This post was originally posted on his blog at LinkedIn, where Solove is a “LinkedIn Influencer.” His blog has more than 1 million followers.
Professor Solove is the organizer, along with Paul Schwartz of the Privacy + Security Forum (Oct. 24-26, 2016 in Washington, DC), an annual event that aims to bridge the silos between privacy and security.