The European Union has struck down ‘safe harbour’ rules which allowed the transfer of European data to the US
A decision by the Court of Justice of the European Union will lead to tougher privacy laws for EU citizens.
Previously, US companies such as Google and Facebook would transfer data received by their European headquarters in Ireland to data storage facilities in the US.
This data could be accessed and searched by the US Government through laws such as § 1881 FISA, which let them target data of “persons reasonably believed to be located outside the United States to acquire foreign intelligence information.”
However, under EU law data could only be sent to another country if they provided ‘adequate protection’ of this personal data.
Max Schrems, an Austrian law student, brought a case to the Irish High Court arguing that the transfer of data by Facebook to the US breached EU law.
Schrems took the case in the aftermath of the revelations by Edward Snowden that the US had engaged in mass collection of personal data of both US and foreign individuals.