The second annual review of the EU-U.S. Privacy Shield framework is currently underway, with the European Commission planning to release a report detailing its findings regarding the effectiveness of the Privacy Shield by January 1, 2019. The Privacy Shield framework was created to act as a conduit between the respective privacy approaches of the European Union and the United States. In July, the European Parliament warned that it would suspend the EU-U.S. Privacy Shield agreement unless the United States took steps to demonstrate its obligations under the framework. Since then, the United States has been collaborating with the European Union to preserve the international data flows in place under the Privacy Shield, emphasizing its importance for both EU and U.S. consumers and businesses.

In a recent statement, the EU Commissioner for Justice, Consumers and Gender Equality and the U.S. Secretary of Commerce jointly confirmed the need for strong privacy enforcement to protect citizens and ensure trust. The Department of Commerce, as enforced by the Federal Trade Commission (FTC), will revoke Privacy Shield certifications if they do not comply with the Privacy Shield’s strong data protection requirements. The FTC recently issued four enforcement actions to enforce these principles.