Message from our CEO: With the uncertainty that continued during 2022, we at The DPO Centre, like so many, are hoping for greater levels of clarity for privacy professionals this year.
This is especially true during a time when so many new data protection laws are entering into force globally; with many jurisdictions implementing regulation moving towards EU standards – not moving away from them, as the UK appears to be trying to do.
We also wait in anticipation of the outcome of the new Trans-Atlantic Privacy Framework, designed to enable the free flow of personal dataInformation which relates to an identified or identifiable natural person. between the EU and the US. This framework is intended to replace the “Privacy ShieldCertification scheme, currently operational with the US, which places requirements on companies to protect personal data and provide appropriate redress for individuals.” that was invalidated by the Court of Justice of the European UnionA Court interpreting EU law, ensuring it is applied in the same way in all EU countries, and settling legal disputes between national governments and EU institutions. (CJEU) in the now infamous Schrems II decision. The two big questions that remain are if this framework will stand up to a further Schrems (III) challenge, complicating once again, the €900 billion in annual cross-boarder commerce. The second question we have is whether the UK will follow suit and create its own framework with the US and what this look like.
2023 is going to be another year of change and uncertainty for privacy and data protection professionals, with businesses needing to implement new processes to remain compliant. We are hoping that 2023 will bring more answers than it does new questions, but either way, we very much look forward to providing the continued support to our clients on their evolving compliance journey.