What do companies need to consider in a post-Trump, Brexit and GDPR world?
The last few years have seen some significant developments in data privacy regulation in Europe, the Middle East and Africa (EMEA).
The invalidation of Safe Harbor, Brexit and the election of Donald Trump to the US Presidency, will inevitably further highlight conflicts of law and add complexity to the issue of data transfers. A recent Trump executive order to exclude persons who are not US citizens from the protections of the Shield directly opposes the spirit of the Shield.
The existence, and the robustness, of established data protection laws globally varies significantly. To date, with the exception of Israel, no Middle Eastern or African countries are considered to have adequate data protection environments from an EU perspective.
There is no single solution, but there are certain measures that can be undertaken in preparation to mitigate risks. FRA's Weng Yee Ng and Jimmy Ko provide an overview of key data privacy regulations throughout EMEA, and set out some considerations and practical guidelines to minimize risk exposure.
Read the full article in GIR here.
Authors: Weng Yee Ng, FRA director & Jimmy Ko, FRA senior associate