25.10.2015

Report: Privacy Bridges - Transatlantic Privacy Solutions (updated)

Report: Privacy Bridges - EU and US Privacy Experts in Search of Transatlantic Privacy Solutions (pdf):
Globalization and technological advances pose common challenges to providing a progressive, sustainable model for protecting privacy in the global Internet environment. Tensions between different legal systems such as the European Union and the United States result in loss of confidence on the part of users and confusions by commercial entities. The goal of this report is to identify practical steps to bridge gaps between the existing approaches to data privacy of the European Union (EU) and the United States (US), in a way that produces a high level of protection, furthering the interests of individuals and increasing certainty for commercial organizations. These "privacy bridges" are designed to advance strong privacy values in a manner that respects the substantive and procedural differences between the two jurisdictions. While our focus is privacy protection in the transatlantic region, we hope that some, if not most, of these privacy bridges may prove useful in other
regions as well. This report emerged from a series of in-person meetings and discussions among a group of independent EU and US experts in the field of privacy and data protection. This group was convened on the initiative of Jacob Kohnstamm, chairman of the Dutch Data Protection Authority, and jointly organized by the Massachusetts Institute of Technology Cybersecurity and Internet Policy Research Initiative, and the University of Amsterdam's Institute for Information Law. We present ten privacy bridges that will both foster stronger transatlantic collaboration and advance privacy protection for individuals.

Update: In a statement issued today [28 Oct 2015] at the International Data Protection and Privacy Conference, the organizations criticized a just-released “Bridges” report that primarily recommended a continuation of industry self-regulation to address privacy, which the organizations said was a “failed policy” and “remarkably out of touch with the current legal reality." The statement is available at here. (pdf)
Source: Privacy International