EU Still Blocking Social Media Users' Data Transfer

Meta has said it is considering shutting down Facebook and Instagram in Europe if it can’t keep transferring user data back to the US. Recently, the EU has protected social media sites like Facebook and Instagram from shutdown. According to the GDPR, US intelligence agencies must now be blocked from accessing EU data.

That’s a dilemma. It’s difficult to exchange data between the US and EU without breaking the law on one of the continents.

A draft decision by the data privacy  regulatory authority in Ireland (where Facebook is domiciled in the EU for tax reasons) to block the social media sites' parent company Meta's data transfers from Europe to the US is stuck in the process, as regulators from across the EU argue over the details.

Meta processes European data in US data centres, including the data of Instagram and Facebook users and, according to US laws, intelligence agencies must be able to access data stored within US territory. 

In July Ireland's privacy regulator decided to block Facebook's owner Meta from using a last legal mechanism called standard contractual clauses to transfer large amounts of messages across the Atlantic. The Irish decision followed a 2020 European Court of Justice ruling that deemed large transfers of data between Europe and the US illegal because they expose Europeans to US government surveillance risks.

Meta has repeatedly said that a decision blocking its transfers would force it to shutter its Facebook and Instagram offerings in Europe.

However, the Irish decision is still pending review by other authorities in Europe. A spokesperson for the Irish regulator has said that it had received objections from several other EU regulators to its draft order, which effectively delays a final decision to shut down the data flows and gives Facebook some much needed breathing space.   

A spokesperson for the Irish regulator has said that it had received objections from several other EU regulators to its draft order, which effectively delays a final decision to shut down the data flows and gives Facebook some badly-needed breathing space.  

The Irish regulator is now expected to take time to resolve the objections. It previously has taken the regulator up to four months to attempt to tweak decisions upon request of other European regulators. If the Irish regulator fails to resolve the dissenting opinions, as it has done in most of its decisions against the US Big Tech firms, it would have to trigger an official dispute resolution mechanism.

This would bring in the European Data Protection Board, delaying the process by at least another month.

All these delays would put Meta within touching distance of being able to keep its data flows to the US alive through a new transatlantic data pact, which negotiators plan to complete within the first quarter of 2023. With the new EU-US data deal in place, Meta and thousands of other companies would be able to use that agreement to move people’s information across the Atlantic.

EU Curia:    Politico:   Politico:     AdWeek:      CNBC:     Techzine:    SEC:     Inc42

You Might Also Read: 

Ireland's Privacy Regulator Is Investigating Instagram:

 

« Think Carefully Before You Pay For Cloud Downtime Insurance
Bluetooth Standards Are Reshaping Medical Devices »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

BTWorks

BTWorks

BTWorks provides identity management and anti-phishing / smishing solutions for web and mobile apps.

Cyber London (CyLon)

Cyber London (CyLon)

CyLon is a leading cyber security accelerator and seed investment programme. We help entrepreneurs from across the globe to build cyber security businesses, raise investment, and develop partnerships.

Segusoft

Segusoft

With its encryption platform SEGULINK, Segusoft provides standard software for companies to securely transfer files and messages.

Rippleshot

Rippleshot

Rippleshot is a fraud analytics firm that detects mass card compromises faster, allowing issuers to execute more proactive fraud detection strategies.

Keynetic Technologies

Keynetic Technologies

Keynetic focuses on developing cybersecurity solutions for Industry 4.0.

Caveonix

Caveonix

Caveonix’s RiskForesight TM solution is an automated, proactive risk and compliance platform designed for hybrid and multi-cloud.

Netacea

Netacea

Netacea provides a revolutionary bot management solution that protects websites, mobile apps and APIs from malicious attacks such as scraping, credential stuffing and account takeover.

LTIMindtree

LTIMindtree

LTIMindtree is a new kind of technology consulting firm. We help businesses transform – from core to experience – to thrive in the marketplace of the future.

Synamic Technologies

Synamic Technologies

Synamic Technologies was founded in 2018 as a start-up to automate cyber security processes. Our CISOSCOPE product automates vulnerability management, risk management and compliance.

Mobileum

Mobileum

Mobileum is a leading provider of Telecom analytics for roaming, security and risk management and end-to-end domestic and roaming testing solutions.

Stratus Technologies

Stratus Technologies

Edge Computing solves the inherent challenges of bandwidth, latency, and security at edge locations to enable IIoT devices and data acquisition.

The IoT Academy

The IoT Academy

The IoT Academy is a reputed Ed-Tech Institute that provides training in emerging technologies such as embedded systems, the Internet of Things (IoT), Data Science and many more.

RMC

RMC

RMC was purpose-built for Mission Assurance and ICS/OT cybersecurity, dedicated to strengthening and protecting government and commercial assets.

Wadilona Cyber Securities

Wadilona Cyber Securities

Wadilona Cyber Securities' sole aim is to bring and secure Information and Communications Technology (ICT) to and work for humans in its simplest terms.

ANSSI Burkina Faso

ANSSI Burkina Faso

ANSSI is responsible for managing the security of information systems and cyberspace in Burkina Faso.

ProjectDiscovery

ProjectDiscovery

ProjectDiscovery is an open-source, cybersecurity company that builds a range of software for security engineers and developers.