Another Domino Falls on the Data Protection Table re: Israel Privacy Protection Regulations of 2001
Thursday, October 22, 2015
Another Domino Falls on the Data Protection Table

Related Practices & Jurisdictions
Print Mail Download i

As all of our readers know by now, as of October 6, the US-EU Safe Harbor Framework is no more. Safe Harbor was the mechanism on which thousands of US companies (and thousands of companies based in the European Union) legitimized their data transfers from the EU to the US. 

The next domino outside the European Union has toppled. The Israeli Law, Information and Technology Authority (ILITA) has revoked its prior authorization for data transfers from Israel to the US that are based on Safe Harbor. Israel’s privacy law (the Israel Privacy Protection Regulations of 2001) is Euro-centric: it prohibits the transfer of data from a database in Israel to a location outside its borders unless the law of the data importer’s country ensures a level of protection that is equal to or greater than Israeli law. Like the EU DPD, the Israel law contains several “derogations,” including one that authorizes the transfer of personal data from Israel to a country to which the EU permits data transfers. Based on the CJEU decision in the Schrems case, the ILITA announced that companies can no longer rely on this derogation as a basis for transfer.   

This is another imperative for companies to understand their data flows and get a Plan B in place yesterday. Once the data flow is understood, one of the other derogations of the Israeli privacy law may be available to legitimize the transfer. 

The ILITA advises that it continues to assess the Schrems decision and will publish additional information  and other clarifications “if necessary”.

Israel’s data protection law received what is called an “adequacy” determination under the EU Data Protection Directive, ensuring that personal data can be transferred from the EU to Israel without reliance on other methods, such as model contractual clauses. The real question for US companies now is whether other countries such as Argentina, Uruguay, Canada, Switzerland will follow Israel. We continue advise that US companies urgently evaluate their data flows, form a plan for taking remedial measures to supplant Safe Harbor, and start to execute on that plan.

©1994-2024 Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C. All Rights Reserved.

Current Legal Analysis

More from Mintz

DOJ’s Criminal Division Announces Pilot Program on Voluntary Self-Disclosure for Individuals
by: Eoin P. Beirne , Nick A. LaPalme
CMS Publishes Final Rules Implementing Part C and Part D Program Changes
by: Tara E. Dwyer , Bridgette A. Keller
USPTO Issues Guidance on AI Use to Patent Professionals — AI: The Washington Report
by: Terri Shieh-Newton, PhD , Bruce D. Sokler
Some Harm is All it Takes – the Supreme Court Lowers the Bar for Title VII Discrimination Claims Involving Lateral Job Transfers
by: Paul M. Huston , Delaney M. Busch
Canada’s Federal Budget 2024: More Changes to the Stock Option Rules = More Headaches for Employers
by: Katy Pitch
Preparing a VC-Backed Company for an Exit Event
by: Stephen M. Callegari , Stefan Jović
NYC “Know Your Rights” Poster and Bill of Rights Website Now Live
by: Corbin Carter , Talia R. Weseley
NY AG Launches Greenwashing Lawsuit Against Beef Producer
by: Jacob H. Hupart
EPA Has Now Listed Two PFAS as Hazardous Substances Under CERCLA. Hold Onto Your Hats.
by: Jeffrey R. Porter
DOJ Releases COVID-19 Fraud Enforcement Task Force Report Touting Its Successes and Urging Lawmakers to Enact New Legislation
by: Jane Haviland , Abdie Santiago

Upcoming Legal Education Events

 

NLR Logo

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up to receive our free e-Newsbulletins

 

Sign Up for e-NewsBulletins