Protecting personal data
The City Law School's International Law and Affairs Group and Institute for the Study of European Laws will host Max Schrems on 12th October 2016 in addressing the topic, ‘EU-US Privacy Shield: The Status Quo of EU-US Data Protection and Privacy’. The event takes place at 1pm in Room D220 of the Rhind Building.
Schrems came to wider public attention when the EU-U.S. Safe Harbour arrangement for transfer of personal data to the United States was declared invalid in a judgement by the European Court of Justice on 6th October 2015.
The case followed a long (and continuing) campaign by Schrems (an Austrian lawyer and doctoral student) to challenge the wholesale transfer of personal data held by Facebook Ireland Ltd to its host computers in the US. The judgement was based on the indiscriminate monitoring of personal data held in the US by the National Security Agency, in breach of the privacy principles set out in the EU’s Data Protection Directive.
Class-action against Facebook
The Safe Harbour arrangement has been replaced by the EU-US Privacy Shield, a new self-regulatory regime that suffers many of the problems of the previous system. In a separate case, the Austrian High Court recently referred a class-action led by Max Schrems on behalf of 25,000 consumers against Facebook Ireland Ltd to the European Court of Justice.
Dr Elaine Fahey, Reader in Law in The City Law School says Max Schrems has been “instrumental in challenging the protection of citizen data in the post-Snowden era”.
Dr David Haynes, a Visiting Lecturer and data privacy expert in City's Department of Library and Information Science, says: “Max Schrems is one of the key players in the evolution of privacy protection in Europe. His work has led to significant changes in the arrangements for transfer of personal data to the United States”.
To register your place at this free event, please visit this weblink.
The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a Regulation by which the European Commission intends to strengthen and unify data protection for individuals within the European Union (EU). It also addresses the export of personal data outside the EU.