Update regarding the Safe Harbour Principles

 in IT-recht

Judicial Redress Act of 2015 passed House and goes to Senate

In my recent news bulletin of 26 October on privacy I informed you that the Working Party has called on the Member States and European institutions to negotiate with American authorities in order to come up with a solid solution regarding the invalidation by the European Court of Justice of the Safe Harbour Principles which rendered the transfer of personal data to the U.S. relying on the Safe Harbour Principles unlawful.
One of the issues identified by the European Court of Justice ruling of 6th October in the Maximillian Schrems vs Data Protection Commissioner case (C-362-14), was that the invalidated decision of the European Commission did not identify whether it is possible for European citizens to seek legal protection in the U.S. if they believe their privacy to be violated.

A bill addressing the extension of the U.S. Privacy Act civil remedies to citizens of certified states has passed House of Representatives last Tuesday (20th October) and has entered its final stage by going to the Senate.

Provided the Bill passes Senate and the U.S. Attorney General designates – as to be expected – the European Union as ‘covered country’, the Judicial Redress Act will enable citizens of the European Union to bring a civil action against certain American government agencies to the same extent as American citizens are entitled to under the U.S. Privacy Act of 1974 for purposes of accessing, amending, or redressing unlawful disclosures of records maintained by such American government agencies. Under the provision that the European Union is a ‘covered country’ at the time of transfer of the respective record(s). The United States District Court of the District of Columbia shall have exclusive jurisdiction over such civil claims.

Although this does not yet address the regulation in the U.S. which in general makes massive and indiscriminate surveillance possible of all personal data transferred from European Union to the U.S. and/or stored by an American organization within the European Union without the required purpose limitation, proportionality and subsidiarity, the Bill once enacted is an important step towards a solution to repair the possibility of transfer of personal data from the European Union to the U.S.

Contact
If you would like to know more about the above or any other privacy issue, please contact mr. I.M. Tempelman.

Read summary of Judicial Redress Act of 2015 here

Recent Posts

Plaats een reactie