Data Transfers between U.S. and EU After New General Data Protection Regulation and Under the New EU-U.S. Privacy Shield
Recording of a 90-minute CLE webinar with Q&A
This CLE course will provide guidance for companies doing business in the EU or providing goods and services to those in the EU on the exchange of information between the U.S. and EU under the new General Data Protection Regulation (GDPR). The panel will also discuss the impact of the Schrems decision, invalidating the U.S.-EU safe harbor provision. The panel will offer best practices for complying with the data protection requirements.
Outline
- New EU regulation for data protection—key changes
- Broader application
- Increased penalties
- Rights of data subjects
- Consent
- Breach notification
- Direct application to data processors
- Data protection authorities
- Cross-border data transfers
- What companies and their counsel should due in advance of the new requirements
- Impact of the Schrems decision on the flow of data between the U.S. and the EU
- Best practices for compliance
- Develop/revise privacy program
- Data breach response policies/procedures
- Review contracts with third parties that process or maintain information protected under the GDPR
- Appointment of data protection officer
- New safe harbor
Benefits
The panel will review these and other key issues:
- What are the key changes under the new EU General Data Protection Regulation?
- What impact will the invalidation of the safe harbor have on the exchange of data between the U.S. and EU?
- What steps should companies and their counsel take to ensure compliance with data protection requirements?
Faculty

Bernard L. (Brian) Hengesbaugh
Partner
Baker & McKenzie
Mr. Hengesbaugh advises clients on the legal aspects of global privacy and data protection, data security, information... | Read More
Mr. Hengesbaugh advises clients on the legal aspects of global privacy and data protection, data security, information technology, and related restrictions on data collection and movement. He focuses on these issues in the context of: data security breach and incident response, global company operations and applications. Formerly Special Counsel to the General Counsel of the US Department of Commerce, he helped develop and implement the US government’s domestic and international policy in the area of privacy and electronic commerce and served on the core team that negotiated the US-EU Safe Harbor Privacy Arrangement (Safe Harbor).
Close
Norma M. Krayem
Sr. Policy Advisor
Holland & Knight
Ms. Krayem co-chairs the firm's Data Protection and Cybersecurity Group and provides strategic advice on key... | Read More
Ms. Krayem co-chairs the firm's Data Protection and Cybersecurity Group and provides strategic advice on key issues in a range of areas, including homeland security, transportation, defense, international trade and environmental, as well as appropriations issues for all aspects of critical infrastructure. She also focuses on the impacts of cyber risks on the banking and financial services, energy, communications, university and retail industries. She has more than 20 years of experience addressing major issues within the national policy-making arena.
Close
William Long
Partner
Sidley Austin
Mr. Long advises international clients on a variety of social media, data protection, privacy, information security,... | Read More
Mr. Long advises international clients on a variety of social media, data protection, privacy, information security, e-commerce and other regulatory matters. He has experience with EU and international e-commerce, consumer, social media, data protection and payments projects, advising on e-commerce, consumer and social media regulation, data security and other data protection issues.
Close
Edward R. McNicholas
Partner
Sidley Austin
Mr. McNicholas has an expansive practice representing clients facing complex information technology, constitutional and... | Read More
Mr. McNicholas has an expansive practice representing clients facing complex information technology, constitutional and privacy issues in civil and white-collar criminal matters. He focuses on trial and appellate representations of technologically-sophisticated clients facing complex personal information and cybersecurity issues. He has significant experience with Internet and information law matters involving privacy and data protection, electronic surveillance, cybersecurity, cloud computing, trade secrets, online advertising, social media, “big data” and national security.
Close