Italian Data Protection Authority (Garante per la protezione dei dati personali) has authorized the transfer of personal data to the US under the Privacy Shield so recognizing it provides adequate level of protection of personal data. However, Italian Data Protection Authority has reserved the right to further monitor and review the adequacy of data transfer scheme.
Yesterday, May 30, 2016 European Data Protection Supervisor (EDPS) Giovanni Buttarelli, as as independent advisor to the EU institutions, published his Opinion on the EU-U.S. Privacy Shield. Privacy Shield is not robust enough, he says, and significant improvements are needed to withstand future legal scrutiny before the Court of Justice of European Union (CJEU).
It is still uncertain when and whether at all EU-U.S. Privacy Shield will be adopted and enter into force. In mean time, Bloomberg BNA has prepared and published a white paper which examines “the challenges that U.S. and EU regulators encountered in reaching the Privacy Shield agreement, the additional privacy protections companies will be required to commit to under the agreement, and those aspects of the Privacy Shield framework that might cause a company previously self-certified under the Safe Harbor to consider alternative mechanisms”.
This white paper will let you better understand what Privacy Shield would require of companies if approved by the European Commission. (Free registration is required to access report.)