ABSTRACT
The aim of this paper is to give an overview on the Privacy Shield Framework. This agreement, which is effective from 12 July 2016, follows the requirements stated in the decision of the European Court of Justice, known as “Schrem” case1, where the Court invalidated the Safe Harbour agreement. The new program strictly regulates personal data flows between the E.U. and the U.S.;
moreover, it represents a tool, along with Standard Contractual Clauses and Binding Corporate Rules, that allows companies to legally transfer personal data between the two side of the Atlantic. The program in question acknowledges the fundamental value of personal information in the modern digital economy and its purpose is to strenghten the relationship between the E.U. and the U.S.
The brief analysis below aims to highlight the fact that doing the self-certification can be an important step for a company in order to comply with the legal requirements related to the protection of E.U. personal data transferred in the U.S. because the European Commission adopted an “adequacy” decision in which the Privacy Shield agreement is declared to be an appropriate tool for this scope.
