14 Dec Article 29 Working Party Publishes Updated Guidelines for Countries Seeking Privacy Approval
EU privacy regulator group Article 29 Working Party recently updated its guidelines for countries outside of the bloc seeking to obtain GDPR adequacy approval from the EU Commission.
Such countries will have to raise their privacy laws to EU standards in order to be qualified to send and receive data of EU citizens. Privacy partner at Allen & Overy LLP Peter Van Dyke further revealed that data flows would not necessarily have to stop if a country loses its privacy adequacy status, since companies can just rely on other data transfer mechanisms approved by the EU.
The EU currently recognizes the adequacy of countries including Andorra, Argentina, Canada, the Faeroe Islands, Guernsey, Israel, the Isle of Man, Jersey, New Zealand, Switzerland, and Uruguay, and acknowledges the protection provided under the EU-US Privacy Shield.
Source: Bloomberg Law