The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale?

Research output: Chapter in Book/Report/Conference proceedingBook chapterResearchpeer-review

Standard

The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale? / Corrales Compagnucci, Marcelo.

International Transfers of Health Data: A Global Perspective. ed. / Marcelo Corrales Compagnucci; Mark Fenwick. Singapore : Springer Nature Singapore, 2024. (Perspectives in Law, Business and Innovation).

Research output: Chapter in Book/Report/Conference proceedingBook chapterResearchpeer-review

Harvard

Corrales Compagnucci, M 2024, The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale? in M Corrales Compagnucci & M Fenwick (eds), International Transfers of Health Data: A Global Perspective. Springer Nature Singapore, Singapore, Perspectives in Law, Business and Innovation.

APA

Corrales Compagnucci, M. (2024). The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale?. Manuscript submitted for publication In M. Corrales Compagnucci, & M. Fenwick (Eds.), International Transfers of Health Data: A Global Perspective Springer Nature Singapore. Perspectives in Law, Business and Innovation

Vancouver

Corrales Compagnucci M. The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale? In Corrales Compagnucci M, Fenwick M, editors, International Transfers of Health Data: A Global Perspective. Singapore: Springer Nature Singapore. 2024. (Perspectives in Law, Business and Innovation).

Author

Corrales Compagnucci, Marcelo. / The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale?. International Transfers of Health Data: A Global Perspective. editor / Marcelo Corrales Compagnucci ; Mark Fenwick. Singapore : Springer Nature Singapore, 2024. (Perspectives in Law, Business and Innovation).

Bibtex

@inbook{e3e5550cacb64860b46efbbb4224466d,
title = "The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale?",
abstract = "The European Commission{\textquoteright}s adequacy decision on the EU-U.S. Data Privacy Framework (DPF), adopted on July 10th, 2023, marks a crucial moment in transatlantic data protection. Following an Executive Order issued by President Biden in October 2022, this decision confirms that the United States (U.S.) meets European Union (EU) standards for personal data protection. The decision extends to all transfers from the European Economic Area (EEA) to U.S. entities participating in the framework, promoting privacy rights while facilitating data exchange. Key aspects include oversight of U.S. public authorities{\textquoteright} access to transferred data, the introduction of a dual-tier redress mechanism, and granting new rights to EU individuals, encompassing data access and rectification. However, the EU-U.S. DPF presents both promise and challenges in health data transfers. While streamlining exchange and aligning legal standards, it grapples with the complexities of divergent privacy laws. The recent bill for the introduction of a U.S. federal privacy law emphasizes the urgent need for ongoing reform. Lingering concerns persist regarding the EU-U.S. DPF{\textquoteright}s resilience, especially amid potential legal battles before the Court of Justice of the EU (CJEU). The history of transatlantic data transfers between the EU and the U.S. is riddled with vulnerabilities, reminiscent of the Ouroboros – an ancient symbol of a serpent or dragon eating its own tail – hinting at the looming possibility of the framework facing invalidation once again. This article delves into the main requirements of the EU-U.S. DPF and offers insights on how healthcare organizations can navigate it effectively.",
keywords = "Faculty of Law",
author = "{Corrales Compagnucci}, Marcelo",
year = "2024",
language = "English",
series = "Perspectives in Law, Business and Innovation",
publisher = "Springer Nature Singapore",
editor = "{Corrales Compagnucci}, Marcelo and Mark Fenwick",
booktitle = "International Transfers of Health Data: A Global Perspective",

}

RIS

TY - CHAP

T1 - The EU-U.S. Data Privacy Framework: Is the Dragon Eating its Own Tale?

AU - Corrales Compagnucci, Marcelo

PY - 2024

Y1 - 2024

N2 - The European Commission’s adequacy decision on the EU-U.S. Data Privacy Framework (DPF), adopted on July 10th, 2023, marks a crucial moment in transatlantic data protection. Following an Executive Order issued by President Biden in October 2022, this decision confirms that the United States (U.S.) meets European Union (EU) standards for personal data protection. The decision extends to all transfers from the European Economic Area (EEA) to U.S. entities participating in the framework, promoting privacy rights while facilitating data exchange. Key aspects include oversight of U.S. public authorities’ access to transferred data, the introduction of a dual-tier redress mechanism, and granting new rights to EU individuals, encompassing data access and rectification. However, the EU-U.S. DPF presents both promise and challenges in health data transfers. While streamlining exchange and aligning legal standards, it grapples with the complexities of divergent privacy laws. The recent bill for the introduction of a U.S. federal privacy law emphasizes the urgent need for ongoing reform. Lingering concerns persist regarding the EU-U.S. DPF’s resilience, especially amid potential legal battles before the Court of Justice of the EU (CJEU). The history of transatlantic data transfers between the EU and the U.S. is riddled with vulnerabilities, reminiscent of the Ouroboros – an ancient symbol of a serpent or dragon eating its own tail – hinting at the looming possibility of the framework facing invalidation once again. This article delves into the main requirements of the EU-U.S. DPF and offers insights on how healthcare organizations can navigate it effectively.

AB - The European Commission’s adequacy decision on the EU-U.S. Data Privacy Framework (DPF), adopted on July 10th, 2023, marks a crucial moment in transatlantic data protection. Following an Executive Order issued by President Biden in October 2022, this decision confirms that the United States (U.S.) meets European Union (EU) standards for personal data protection. The decision extends to all transfers from the European Economic Area (EEA) to U.S. entities participating in the framework, promoting privacy rights while facilitating data exchange. Key aspects include oversight of U.S. public authorities’ access to transferred data, the introduction of a dual-tier redress mechanism, and granting new rights to EU individuals, encompassing data access and rectification. However, the EU-U.S. DPF presents both promise and challenges in health data transfers. While streamlining exchange and aligning legal standards, it grapples with the complexities of divergent privacy laws. The recent bill for the introduction of a U.S. federal privacy law emphasizes the urgent need for ongoing reform. Lingering concerns persist regarding the EU-U.S. DPF’s resilience, especially amid potential legal battles before the Court of Justice of the EU (CJEU). The history of transatlantic data transfers between the EU and the U.S. is riddled with vulnerabilities, reminiscent of the Ouroboros – an ancient symbol of a serpent or dragon eating its own tail – hinting at the looming possibility of the framework facing invalidation once again. This article delves into the main requirements of the EU-U.S. DPF and offers insights on how healthcare organizations can navigate it effectively.

KW - Faculty of Law

M3 - Book chapter

T3 - Perspectives in Law, Business and Innovation

BT - International Transfers of Health Data: A Global Perspective

A2 - Corrales Compagnucci, Marcelo

A2 - Fenwick, Mark

PB - Springer Nature Singapore

CY - Singapore

ER -

ID: 388727104