{"id":21286,"date":"2023-02-17T16:30:03","date_gmt":"2023-02-18T00:30:03","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2023\/02\/17\/news-15018\/"},"modified":"2023-02-17T16:30:03","modified_gmt":"2023-02-18T00:30:03","slug":"news-15018","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2023\/02\/17\/news-15018\/","title":{"rendered":"EU parliamentary committee says 'no' to EU-US data privacy framework"},"content":{"rendered":"

<\/p>\n

The European Parliament\u2019s Committee on Civil Liberties, Justice and Home Affairs has recommended that the European Commission reject the proposed EU-US Data Privacy Framework, which would govern the way in which the personal information of EU citizens is handled by US companies.<\/p>\n

The committee’s decision <\/a>\u2014 formally, a draft motion for a resolution\u2014 represents a rejection of the European Commission\u2019s recommendation, announced in December<\/a>, that the data privacy framework should be adopted. The recommendation stated that US law now offers an \u201cadequate\u201d level of protection for the personal data of EU users of US companies\u2019 services.<\/p>\n

According to the parliamentary committee, however, the proposed data privacy framework doesn\u2019t fully comply with the EU\u2019s General Data Protection Regulation (GDPR)<\/a>, particularly in light of ongoing US policy that would allow for the large-scale, warrantless collection of user data for national security purposes.<\/p>\n

An executive order issued by the Biden Administration, the committee said, is insufficient additional protection for several reasons, including the mutability of policy made by executive order \u2014 it can simply be reversed or amended by the president at any time \u2014 and the inadequacy of the safeguards it provides.<\/p>\n

In particular, the committee noted, the executive order is too vague, and leaves US courts \u2014 who would be the sole interpreters of the policy \u2014 wiggle room to approve the bulk collection of data for signals intelligence, and doesn\u2019t apply to data accessed under US laws like the Cloud Act and the Patriot Act.<\/p>\n

The parliamentary committee’s major points echoed those of many critics of the deal in the EU<\/a>, as well as the criticsm of the American Civil Liberties Union (ACLU), which has said that the US has failed to enact meaningful surveillance reform.<\/p>\n

The committee, in its motion for a resolution, said that \u201cunlike all other third countries that have received an adequacy decision under the GDPR, the US still does not have a federal data protection law.”<\/p>\n

In short, the committee said that US domestic law is simply incompatible with the GDPR framework, and that no agreement should be reached until those laws are more in alignment. The committee\u2019s negative response this week to the proposed data privacy framework, however, was a nonbinding draft resolution and though it is a sticking point, does not put a formal halt to the adoption process, as its approval was not required to move the agreement along.<\/p>\n

It’s not a surprise that the committee issued a negative recommendation, according to Lartease Tiffith, executive vice president for public policy at the Interactive Advertising Bureau, which has supported the draft framework.<\/p>\n

“It has a particular point of view on all issues related to privacy and civil liberties,” he said. “We will have to see what the [European Commission] decides.”<\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

\n
\n

The European Parliament\u2019s Committee on Civil Liberties, Justice and Home Affairs has recommended that the European Commission reject the proposed EU-US Data Privacy Framework, which would govern the way in which the personal information of EU citizens is handled by US companies.<\/p>\n

The committee’s decision <\/a>\u2014 formally, a draft motion for a resolution\u2014 represents a rejection of the European Commission\u2019s recommendation, announced in December<\/a>, that the data privacy framework should be adopted. The recommendation stated that US law now offers an \u201cadequate\u201d level of protection for the personal data of EU users of US companies\u2019 services.<\/p>\n

To read this article in full, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[12534,11063,12116,19180],"class_list":["post-21286","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-compliance","tag-data-privacy","tag-gdpr","tag-legal"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/21286","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=21286"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/21286\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=21286"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=21286"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=21286"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}