// THREAT DETECTION AND DATA PRIVACY TERM
Privacy Shield
The EU-US Privacy Shield was a legal framework allowing companies to transfer personal data from the European Union to the United States while complying with EU data protection laws. It was declared invalid in 2020 by the European Court of Justice.
TECHNICAL DEFINITION
The EU-US Privacy Shield was a now-defunct adequacy decision framework established by the European Commission and the U.S. Department of Commerce to regulate transatlantic personal data transfers under GDPR. It was invalidated by the Court of Justice of the European Union (CJEU) in the Schrems II case due to concerns about U.S. government surveillance, and was later succeeded by the EU-U.S. Data Privacy Framework.
BACKGROUND
Computer security is a subdiscipline within the field of information security. It focuses on protecting computer software, systems, and networks from threats that can lead to unauthorized information disclosure, theft, or damage to hardware, software, or data, as well as to the disruption or misdirection of the services they provide.
READ MORE ON WIKIPEDIASYNONYMS & ALIASES
- EU-US Privacy Shield Framework
- Safe Harbor successor
- Schrems II predecessor
- Transatlantic Data Privacy Framework
- Invalidated Adequacy Decision
USAGE NOTE
Although invalidated, this term is crucial for understanding the history and legal evolution of international data transfer mechanisms.
DEVELOPERS
Organizations developing technology related to Privacy Shield.
A leading privacy management software provider whose platform helps organizations automate compliance with global privacy regulations. Its tools for data mapping, assessment automation, and consent management were used by companies to adhere to the requirements of the Privacy Shield framework and its successor, the EU-U.S. Data Privacy Framework.
Offers a comprehensive data privacy management platform to help businesses manage compliance with regulations like GDPR. The company provided solutions and services for businesses seeking to assess their readiness and certify under the former EU-U.S. Privacy Shield framework.
The agency within the U.S. Department of Commerce that developed and administered the EU-U.S. and Swiss-U.S. Privacy Shield frameworks. It manages the official government platform for companies to self-certify their compliance with the principles of its successor, the EU-U.S. Data Privacy Framework.
A data intelligence platform specializing in data discovery, classification, and governance. Its technology enables companies to find and manage personal and sensitive data across their entire data landscape, which is a foundational step for complying with cross-border data transfer rules like those in the Privacy Shield.
Provides an AI-powered Data Command Center for unified data controls across privacy, security, and governance. Its platform automates compliance obligations, including data subject rights (DSRs) and consent management, which are critical components for frameworks governing transatlantic data flows.
A privacy platform that helps companies create a real-time inventory of personal data held in third-party SaaS applications and internal systems. This capability is essential for managing and demonstrating compliance with data transfer agreements and privacy regulations.
A data privacy and protection platform that helps companies manage their privacy programs. The platform supports compliance with a wide range of regulations by automating data subject request fulfillment, privacy impact assessments, and records of processing activities, all of which were relevant to Privacy Shield certification.