Irish Watchdog Refers Facebook Data Transfers To European Court

The Irish data protection watchdog has referred Facebook’s data transfer practices to the United States, to the Court of Justice of the European Union (CJEU).

It comes after CJEU last October suspended the Safe Harbour agreement that allowed data-sharing between the EU and the US for the past 15 years. It ruled against the long-standing agreement as it felt it no longer sufficiently protected European information against US surveillance, in light of the Edward Snowden revelations.

Court Referral

Soon after the agreement suspension, the Irish data protection watchdog confirmed it was undertaking an official investigation in the social networking giant’s data transfers.

Ireland is acting as Europe’s lead body to the CJEU decision. This is because Facebook’s EU headquarters is in Dublin, and therefore it is regulated by the Irish Data Protection Commissioner (IDPC).

This fact prompted Austrian lawyer Max Schrems to bring his privacy case against Facebook to the Irish data protection watchdog in late 2012.

The IDPC said it would ask the Court of Justice of the European Union (CJEU) to determine the validity of Facebook’s “model contracts” – common legal arrangements used by thousands of firms to transfer personal data outside the 28-nation EU.

“We yesterday informed Mr Schrems and Facebook of our intention to seek declaratory relief in the Irish High Court and a referral to the CJEU to determine the legal status of data transfers under standard contractual clauses,” the IDPC was quoted by Reuters as saying.

Since the CJEU struck down the Safe Harbour agreement, companies transferring data to the United States have had to rely on individual contracts and other clumsy measures to make sure they are in compliance with strict EU data privacy rules.

Privacy Shield

Matters have not been helped by the fact that the replacement for the Safe Harbour agreement, known as the Privacy Shield, faces a number of challenges, most notably the fact that it has not been endorsed by European data protection watchdogs.

Despite the problems with the proposed Privacy Shield agreement, the hope is that it will be up and running by the end of June this year.

“Thousands of companies transfer data across borders to serve their customers and users,” a spokeswoman for Facebook told Reuters.

“The question the Irish DPC plans to raise with the court regarding standard contract clauses will be relevant to many companies operating in Europe,” she said.

The Facebook spokeswoman also said that the company has a number of legal ways of moving data to the United States.

What do you know about privacy? Try our quiz!

Tom Jowitt

Tom Jowitt is a leading British tech freelancer and long standing contributor to Silicon UK. He is also a bit of a Lord of the Rings nut...

Recent Posts

Google Jarvis AI Extension Leaked On Chrome Store

Seemingly accidental leak reveals Google is developing Jarvis AI extension that can browse the web…

24 hours ago

Amazon Mulls New Multi-Billion Dollar Investment In Anthropic – Report

Amazon is reportedly in talks to pump billions of dollars more into AI start-up Anthropic,…

1 day ago

FTX’s Caroline Ellison Begins Her Two Year Prison Sentence

Star witness for the US prosecution of FTX founder Sam Bankman-Fried, has begun her two…

1 day ago

More Layoffs For iRobot Staff After Abandoned Amazon Deal

After axing 31 percent of its workforce when it failed to be acquired by Amazon,…

2 days ago

Mozilla Foundation Confirms Layoffs, Eliminates Advocacy Division

Mozilla Foundation axes 30 percent of its staff, and is eliminating its Advocacy Division that…

2 days ago

Google To Make MFA Mandatory Next Year

Improving security. Mandatory multi-factor authentication (MFA) is coming to the Google Cloud by the end…

2 days ago