International Transfers & EU Standard Contractual Clauses

Trending News

FTC Approves Non-Compete Ban

Final Rule Raises Salary Threshold to $58,656 for Employee Overtime Exemptions

EEOC Final Rule Implementing the Pregnant Workers Fairness Act

Trending in Telehealth: April 9 – April 15, 2024

Healthcare Preview for the Week of: April 22, 2024 [Podcast]

Pregnant Workers Fairness Act Final Regulations Released

It’s the Final Countdown – The Final PWFA Regs Are Here

Corporate Transparency Act – Continued Developments

Healthcare Preview for the Week of: April 15, 2024 [Podcast]

SCOTUS Declines to Review New York City’s Rent Stabilization Law

Elizabeth (Liz) Harding

Email

303.583.8228

Bio and Articles

New EU Standard Contractual Clauses for International Transfers

by: Elizabeth (Liz) Harding of Polsinelli PC - Alerts

Friday, June 4, 2021

Print Mail Download

i

The European Commission has today published its new Standard Contractual Clauses (“SCCs”) for international transfers of personal data (see here).

We have pulled out a few key questions and answers to address immediate issues:

What do the new SCCs address? Rather than addressing just controller to controller, or controller to processor, transfers (which was the case under the old SCCs), the new SCCs are modular and, in addition to these transfers, they also address processor to processor, and processor to controller transfers. This new modular approach much better fits the reality of data transfers, particularly because they can be used by data exporters that are not established in the EEA but who are still subject to GDPR by virtue of their offering good or services to, or monitoring the behavior of, individuals in the EU.
Do the new SCCs address issues raised by Schrems II? Yes. The new SCCs include provisions to address the concerns regarding international transfers raised in the Schrems II case. Of note, and at odds with guidance previously issued by the European Data Protection Board, the new SCCs appear to take a risk based approach to Schrems II compliance by permitting the parties to consider different elements as part of an overall assessment of risk. These elements include, for example, practical experience with prior instances of requests for disclosure from public authorities.
Do I have to use the new SCCs for new transfers? New transfers can be undertaken under the old SCCs for the next 3 months. However, it will likely be more practical for new transfers to be undertaken pursuant to the new SCCs.
What about existing transfers? Do I have to immediately switch to the new SCCs? There is a grace period of 18 months for existing transfers, after which organizations will be required to switch to the new SCCs.
What should I be doing now? Review and update template DPAs to incorporate the new SCCs, and ensure that any new transfers are undertaken subject to them. With respect to existing transfers, identify existing transfers undertaken pursuant to the old SCCs and identify what type of transfer under the new SCCs is being undertaken (i.e controller to controller, processor to controller). Then, start to amend applicable contracts / DPAs to incorporate the appropriate version of the new SCCs in good time to meet the 18 month implementation deadline.

Current Legal Analysis

Shanghai to Subsidize Construction of Standard Essential Patent Pools

by: Aaron Wininger

CIPL Publishes White Paper on Leveraging Data Responsibly and a Holistic Data Strategy

by: Hunton Andrews Kurth’s Privacy and Cybersecurity

Is This the End of Noncompete Agreements in the United States?

by: Peter A. Lauricella , Kadeem Wolliaston

The New Jersey Mini-WARN Act Amendments—One Year Later

by: Mark Diana , Brandon R. Sher

IS TCR NEXT TO FACE BAN?: With Tik Tok Facing Ban Unless it Sells to American Company is The Campaign Registry Next on the List?

by: Eric J. Troutman

More from Polsinelli PC

FTC Final Rule Banning Most Non-Competes Passes – What You Need to Know

by: Eric E. Packel , Emma R. Schuering

Finally Final — The DOL Issues Its Long-Expected Final Rule Raising the FLSA Overtime Exemption Salary Thresholds

by: Jason N. W. Plowman , Matthew P.F. Linnabary

"Please Pay No Attention to the Microphone:” DOJ Announces New Program Offering Protections to Criminal Whistleblowers

by: Kurt R. Erskine , Nicole K. Nielly

HRSA Aims for Swift Dispute Resolution with new 340B ADR Final Rule

by: Mary H. Canavan , Kyle A. Vasquez

Critical Infrastructure Cybersecurity – Evolving Incident Response Obligations, Integral to Effective Risk Management

by: Romaine C. Marshall , Kurt R. Erskine

Vote Scheduled for FTC Final Rule Banning Non-Competes – What You Need to Know

by: Eric E. Packel , Sean R. Gallagher

FDA Preemption of State Law for False Labeling Survives Appeal to Supreme Court

by: Gina L. Tincher , Stacy A. Carpenter

What to Know About New York’s New Supplement Law Going into Effect this Month

by: Stuart M. Pape , Suzanne E. Bassett

The EEOC Issues its Final Rule about the Pregnant Workers Fairness Act

by: Shivani P. Bailey

Easement Fund Victory on Perpetuity Will Result in More Attention on Valuation

by: Lauren P. DeSantis-Then , William J. Sanders

Upcoming Legal Education Events

Jun

4

2024

FinTech and Securities Trading Platforms

May

17

2024

Upon Further Review: A Look Back at the Last Year in the Third, Fourth, and D.C. Circuits

May

15

2024

Capital Connect: Finance & Funding in Life Sciences

May

14

2024

Harmonizing TSCA Consent Orders with OSHA HCS 2012

Print