On July 16, 2020, the Court of Justice of the European Union (CJEU) issued its long-awaited judgment in the Schrems II case (case C-311/18). The Schrems II judgment impacts transatlantic personal data transfers under the EU’s General Data Protection Regulation (GDPR) in two key ways:
Set to take effect on May 25th, 2018, the General Data Protection Regulation (GDPR) is the European Commission’s latest attempt to strengthen the protections afforded the personal data of EU natural persons in connection with third-party processing activities…As a global provider of eDiscovery services, CDS is taking the necessary steps to comply with these enhanced requirements.
The EU’s General Data Protection Regulation (GDPR) was approved in April 2016 as part of the effort to bring consistency and clarity to laws surrounding personal data. This regulation concerns both the proactive security measures that must be taken to safeguard this data as well as the appropriate handling of data as it is exported from the EU to other jurisdictions. Businesses that regularly handle electronically stored information (ESI) should take the time to familiarize themselves with the regulation and understand the impact it will have on their processes before enforcement begins.
Jeff Salling, eDiscovery Counsel at CDS, moderated a panel on cross-border data issues at the 2016 CALSM-posium in Chicago