TrustArc Blog

Privacy Shield Approaching Its 3 Year Anniversary in Operation

April 25, 2019

With data protection-related activity bustling around the world–from “Brexit” and GDPR enforcement to the approaching CCPA and exciting developments in the APAC region–it’s understandable to lose track of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks. What follows are responses to the most frequent Privacy Shield inquiries TrustArc is hearing from our customers. Is Privacy Shield Still Valid? Yes – in fact, Privacy Shield is fast approaching its three year anniversary on July 12th. Since its 2016 adoption, Privacy Shield has remained a sound, scalable and steady legal transfer mechanism for U.S. entities seeking to receive personal data from the EU … Continue reading Privacy Shield Approaching Its 3 Year Anniversary in Operation

3 Ways to Leverage Your Privacy Shield Certification

March 02, 2017

EU US Privacy Shield

Last week TRUSTe held a webinar “Privacy Shield Self-Certification – What’s Next?” as part of its Privacy Insight Series. If you missed the webinar you can still sign up to receive the on-demand recording and the slides. Our speakers, David Fowler, Chief Privacy & Digital Compliance Officer, Act-On Software; Amanda Gratchner, Global Privacy Counsel, NAVEX Global; and K Royal, Senior Privacy Consultant at TRUSTe discussed several different ways to enhance everything from your policies to your Privacy Impact Assessments by leveraging your Privacy Shield Certification. They also discussed how to use the Certification toward compliance with other frameworks, such as the … Continue reading 3 Ways to Leverage Your Privacy Shield Certification

Swiss-US Privacy Shield Replaces U.S.-Swiss Safe Harbor

February 24, 2017

Last month the United States Department of Commerce and Switzerland’s Federal Council declared that the new Swiss-US Privacy Shield Framework will be the successor to the Swiss-US Safe Harbor framework. The Swiss-US Safe Harbor framework was declared invalid in October 2015 following the European Union Court of Justice’s decision that the EU-US Safe Harbor was an inadequate legal mechanism for personal data transfers to the US. Since then, officials have drafted the new framework to ensure that the Swiss-US Privacy Shield Framework improves upon the U.S.- Swiss Safe Harbor framework by including stricter data protection principles. These include enhanced requirements … Continue reading Swiss-US Privacy Shield Replaces U.S.-Swiss Safe Harbor

3 More Misconceptions about Privacy Shield

October 10, 2016

  Last week we gave you the facts to dispel three common misconceptions about Privacy Shield. This week we are including three more. 1. Model Contractual Clauses (MCCs) & Standard Contractual Clauses (SCCs) are easier than certifying for Privacy Shield. While your company may have invested in MCCs or SCCs when Safe Harbor was nullified, your work does not stop there.  You need to continue updating your contracts on an ongoing basis to ensure continuing compliance.  Sabina Jausovec Salinas, Corporate Counsel at Rackspace and Debbie Bromson, Head of Global Privacy at Jazz Pharmaceuticals spoke about why they chose Privacy Shield for their organizations; … Continue reading 3 More Misconceptions about Privacy Shield

3 Misconceptions about Privacy Shield

October 06, 2016

Here are 3 Misconceptions about Privacy Shield and the facts you should know. 1. I missed the deadline to certify for Privacy Shield. Although the deadline to qualify for the onward transfer requirements grace period ended September 30th, it is not too late to certify. While there is no deadline to self-certify, if you have clients and/or employees in Europe, you will need to make use of one of the recognized transfer mechanisms to process that data outside of Europe. In addition to these regulatory obligations, your company may start to face pressure from clients or business partners to get the … Continue reading 3 Misconceptions about Privacy Shield

TRUSTe Assessment Manager Passes 1,000 Company Milestone; Version 3.0 Released

September 08, 2016

With more than 1,000 companies now using TRUSTe Assessment Manager to assess and manage privacy compliance risk, TRUSTe announced today that version 3.0 of the award-winning solution is now available.  The Assessment Manager 3.0 release introduces a host of new features including support for TRUSTe managed assessments,  increased collaboration, enhanced reporting, an expanded privacy template library, and streamlined project workflow.  The new features enable businesses of all sizes and privacy maturity to address emerging privacy challenges including Privacy Shield, the General Data Protection Regulation (GDPR), and vendor risk. Marcus Morissette, eBay Global Privacy Officer and Privacy Counsel said: “eBay is dedicated to meeting … Continue reading TRUSTe Assessment Manager Passes 1,000 Company Milestone; Version 3.0 Released