Co-leader of Manatt’s privacy and data security practice Scott Lashway spoke with Law360 about the Court of Justice of the European Union’s recent decision in the Schrems II case, which struck down the EU-U.S. Privacy Shield Framework as a method of transferring personal data from the EU to the U.S. In the article, Lashway discussed what this decision means for multinational companies operating in the EU, as well as other tools that exist for transatlantic data transfers, including standard contractual clauses and binding corporate rules. Lashway noted that “companies are going to need to take a step back and evaluate their transatlantic data transfers and the potential liability for those transfers. I don't read the court's decision as being as simple as a company that was relying on Privacy Shield saying they're now going to sign standard contractual clauses and that's it."
Read the article here.