There are indications that the U.S. and EU are close to a decision on Safe Harbor according to this Nov. 30 article in Politico, “EU hopes for new ‘safe harbor’ deal with US by January.” The article states: “The United States and European Union will take stock December 17 on negotiations over data transfers across the Atlantic.” EU Justice Commissioner Vera Jourová is quoted as saying: “… replacement legislation to the safe harbor pact will be reviewed. The Commission aims to conclude negotiations in January 2016.” “the Commission is looking to involve European privacy watchdogs more closely.” “both European data protection authorities and the Federal Trade … Continue reading U.S. & EU Close to a Decision on Safe Harbor
This week, the Court of Justice of the EU (CJEU) ruled that the current U.S.-EU Safe Harbor Program is no longer a valid method for ensuring adequacy under EU Data Protection Directive 95/46/EC for international data transfers. U.S.-EU Safe Harbor had been in place since 2000 and more than 4,000 U.S. companies relied on the framework. Until the Department of Commerce and the European Commission can finalize a new Safe Harbor framework, many businesses are left wondering what to do. We invited attendees to send in their questions in advance and were flooded with responses. Today’s webinar tackled these questions … Continue reading U.S.-EU Safe Harbor – What’s Next?
Today, Oct. 6th, the Court of Justice of the EU (CJEU) ruled that the current U.S.-EU Safe Harbor Program is no longer a valid method for ensuring adequacy under EU Data Protection Directive 95/46/EC for international data transfers. This significant change in data protection law removes an established data transfer compliance mechanism that has been in place since 2000 and relied on by more than 4,000 U.S. companies. This ruling causes a period of uncertainty for businesses until the Department of Commerce and the European Commission can agree and put a new U.S.-EU Safe Harbor framework in place. This morning … Continue reading Next Steps Following the EU Court of Justice Ruling on U.S.-EU Safe Harbor
At the end of each month we’ll compile a list featuring some of the most informative and interesting privacy blog posts to let you know what topics are driving the privacy agenda this month. This month on the blog we covered data breaches, ‘Right to be Forgotten,’ and the new IoT Trust Framework, among other topics. This was the second month of our new series featuring the leading players in the Privacy Ecosystem. Check out the list below for some of the most popular blog posts this month: New IoT Trust Framework Addresses Privacy Risks & Guidelines On Aug. … Continue reading End of Month Recap: What You May Have Missed [August]
Sr. Product Counsel | TRUSTe
Today, the FTC announced new amendments to the Children’s Online Privacy Protection Act (COPPA) rules. COPPA focuses on the collection and use of data concerning children under the age of 13. COPPA was first enacted in 2000, the new rule amendments are intended to update the law and bring it in line with current technologies and practices. The new rules go into effect July 1, 2013.
TRUSTe’s COPPA Safe Harbor program has been a leading compliance solution for companies seeking to serve the needs of children and their parents online.
As a leader in online privacy compliance, TRUSTe has always strived to set a bar for certification that is above the bare minimum required. This philosophy helps to smooth the transition sparked by rule changes such as this one, as many of the changes are already incorporated into TRUSTe’s program requirements and our best practice recommendations.
For example: under the new rules, geolocation data will be considered Personal Information which may not be collected without parental consent. Not only has TRUSTe required geolocation data to be treated as Personal Information for several years, we have also required transmission of such information be encrypted in order to enhance consumer safety.
Similarly, under the new rules unique identifiers such as mobile device IDs and IP addresses are considered Personal Information. TRUSTe has been advising our client for some time that our understanding of Personal Information includes exactly these types of identifiers. Read more “Will the new COPPA Rules Effect TRUSTe’s COPPA Safe Harbor Program?”