EU Still Blocking Social Media Users' Data Transfer

Uploaded on 2022-08-26 in TECHNOLOGY-Key Areas-Social Media, FREE TO VIEW, BUSINESS-Services-Law

Meta has said it is considering shutting down Facebook and Instagram in Europe if it can’t keep transferring user data back to the US. Recently, the EU has protected social media sites like Facebook and Instagram from shutdown. According to the GDPR, US intelligence agencies must now be blocked from accessing EU data.

That’s a dilemma. It’s difficult to exchange data between the US and EU without breaking the law on one of the continents.

A draft decision by the data privacy  regulatory authority in Ireland (where Facebook is domiciled in the EU for tax reasons) to block the social media sites' parent company Meta's data transfers from Europe to the US is stuck in the process, as regulators from across the EU argue over the details.

Meta processes European data in US data centres, including the data of Instagram and Facebook users and, according to US laws, intelligence agencies must be able to access data stored within US territory. 

In July Ireland's privacy regulator decided to block Facebook's owner Meta from using a last legal mechanism called standard contractual clauses to transfer large amounts of messages across the Atlantic. The Irish decision followed a 2020 European Court of Justice ruling that deemed large transfers of data between Europe and the US illegal because they expose Europeans to US government surveillance risks.

Meta has repeatedly said that a decision blocking its transfers would force it to shutter its Facebook and Instagram offerings in Europe.

However, the Irish decision is still pending review by other authorities in Europe. A spokesperson for the Irish regulator has said that it had received objections from several other EU regulators to its draft order, which effectively delays a final decision to shut down the data flows and gives Facebook some much needed breathing space.   

A spokesperson for the Irish regulator has said that it had received objections from several other EU regulators to its draft order, which effectively delays a final decision to shut down the data flows and gives Facebook some badly-needed breathing space.  

The Irish regulator is now expected to take time to resolve the objections. It previously has taken the regulator up to four months to attempt to tweak decisions upon request of other European regulators. If the Irish regulator fails to resolve the dissenting opinions, as it has done in most of its decisions against the US Big Tech firms, it would have to trigger an official dispute resolution mechanism.

This would bring in the European Data Protection Board, delaying the process by at least another month.

All these delays would put Meta within touching distance of being able to keep its data flows to the US alive through a new transatlantic data pact, which negotiators plan to complete within the first quarter of 2023. With the new EU-US data deal in place, Meta and thousands of other companies would be able to use that agreement to move people’s information across the Atlantic.

EU Curia:    Politico:   Politico:     AdWeek:      CNBC:     Techzine:    SEC:     Inc42

You Might Also Read: 

Ireland's Privacy Regulator Is Investigating Instagram:

 

« Think Carefully Before You Pay For Cloud Downtime Insurance
Bluetooth Standards Are Reshaping Medical Devices »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

WEBINAR: How To Build And Implement An Effective Endpoint Detection And Response Strategy

WEBINAR: How To Build And Implement An Effective Endpoint Detection And Response Strategy

Join this webinar to learn how the cloud threat landscape is evolving and organizations are deploying more advanced and capable security controls at scale.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Cortado

Cortado

Cortado Mobile Solutions is a manufacturer of enterprise mobility solutions.

CORDIS

CORDIS

CORDIS is the European Commission's primary public repository and portal to disseminate information on all EU-funded research projects and their results.

Bloombase

Bloombase

Bloombase is the leading innovator in Next-Generation Data Security solutions for Global 2000-scale organizations

APWG

APWG

APWG is the international coalition unifying the global response to cybercrime across industry, government, law-enforcement and NGO communities.

ObjectSecurity

ObjectSecurity

ObjectSecurity is a leader in authorization policy automation. With OpenPMF, you can manage application security policies for access control and auditing.

RevenueStream

RevenueStream

RevenueStream uses an innovative algorithmic approach to intercept and prevent payment fraud before it even happens.

ERNW

ERNW

ERNW is an independent IT Security service provider with a focus on consulting and testing in all areas of IT security.

Assystem

Assystem

Assystem delivers a comprehensive security approach for the industrial and service sectors that integrates physical security systems, industrial cyber-security, functional safety and dependability.

Dualog

Dualog

Dualog provides a maritime digital platform which ensures that services work reliably and securely onboard.

Open Connectivity Foundation (OCF)

Open Connectivity Foundation (OCF)

OCF is dedicated to ensuring secure interoperability ensuring secure interoperability of IoT for consumers, businesses and industries.

Digital Magics

Digital Magics

Digital Magics is an incubator for innovative startups which offer content and services with high technological value. Areas of focus include IoT, Enterprise Software, AI, Industry 4.0 and Blockchain.

RISE

RISE

RISE is an independent, State-owned research institute, which offers unique expertise and over 100 testbeds and demonstration environments for future-proof technologies, products and services.

Angoka

Angoka

Angoka provide hardware-based solutions for managing the cybersecurity risks inherent in machine-to-machine communication networks.

Cyway

Cyway

Cyway is a value-added cybersecurity distributor focusing on on-prem, cloud solutions and hybrid solutions, IoT, AI & machine learning IT security technologies.

SecureWorx

SecureWorx

SecureWorx are a secure multi-cloud MSP, a provider of advanced IT security services and an independent cyber security advisory.

Dutch Institute for Vulnerability Disclosure (DIVD)

Dutch Institute for Vulnerability Disclosure (DIVD)

DIVD's aim is to make the digital world safer by reporting vulnerabilities we find in digital systems to the people who can fix them.