The European Court of Justice has struck down a data protection agreement between the U.S. and the EU known as Privacy Shield, it announced Thursday.
In the same ruling, the Luxembourg-based court upheld the legality of instruments used to export data out of Europe called Standard Contractual Clauses (SCCs).
The case stems back to a complaint by Austrian privacy activist Max Schrems filed in 2013 against Facebook. He argued that revelations of widespread American snooping by whistleblower Edward Snowden showed that EU data hoovered up by the social media company was not safe from snooping in the U.S.
The complaint led to the EUs top court in 2015 striking down a data transfer agreement between the U.S. and the EU known as Safe Harbor, which was later replaced by the Privacy Shield.
However, Schrems complained that fundamental issues with Americas surveillance regime remained even under Privacy Shield, urging regulators to veto Facebooks use of SCCs to transfer data across the Atlantic.
The case ended up in the court again after Irelands Data Protection Commission — the privacy regulator in charge of overseeing Facebook in Europe — refused to nix the social media companysRead More – Source