+31 (0) 546-714360
0

Privacy Shield declared invalid

  • Reading time: 1 minutes

The GDPR and privacy legislation. We’ve heard these terms mentioned frequently in recent years. For example, personal data processed by organizations in the EU may, in principle, only be processed within the EU. An exception to this was made for parties certified under the EU-US Privacy Shield. However, on July 16, the Court of Justice of the EU declared this invalid. What does this mean for the applications you have hosted in, for example, Google Cloud, Microsoft Azure, or Amazon AWS? Our Security Officer Timo explains in this blog why it’s better to choose a hosting provider within Europe.

 

The GDPR and the Privacy Shield

In May 2018, the new European privacy legislation, the General Data Protection Regulation (GDPR), came into effect. This privacy legislation sets strict rules regarding the processing of personal data of European citizens by (European) organizations. Among other things, the GDPR states that this personal data may only be processed within the EU. There are several exceptions to this. For data transfers to the US, for example, there was the EU-US Privacy Shield—a kind of certification intended to demonstrate that personal data would still be properly protected. Parties such as Google, Amazon, and Microsoft were among those covered. European organizations using American cloud solutions to process data often relied on the Privacy Shield to justify sending this data to the US.

The EU-US Privacy Shield declared invalid

However, on July 16, 2020, the Court of Justice of the EU decided to declare this scheme invalid, as European personal data would not be sufficiently protected in the US. The reason for this is that the American government would have the authority to access and process data in the US. In short, due to this ruling by the Court, data transfers to the US under the Privacy Shield are no longer permitted as of immediately. The EU member states and the supervisory authorities (in the Netherlands, the Dutch Data Protection Authority) can enforce this immediately. At this moment, they are considering how to deal with this situation.

What does this mean for organizations?

Many organizations make use, to a greater or lesser extent, of American cloud solutions or tools. In many cases, the Privacy Shield was used to justify data transfers. Now that the Privacy Shield has been declared invalid, it is important for companies to assess whether such data transfers are truly necessary and whether there is still a solid legal basis for them. In some cases, so-called “Standard Contractual Clauses (SCCs)” may be applicable to justify the data transfer. However, these do not always suffice. For example, not all services of a provider may fall under them, so processing data in the US remains a risk. If companies still wish to do this, they must have a strong legal basis and be able to justify it thoroughly.

Why hosting within the EU?

Any organization currently using an American provider to process data would do well to consider whether there are good European alternatives. To limit the risks regarding privacy legislation and data transfers to the US, it may be wise to look for a reliable European hosting provider and ensure that all data is processed within the EU. This way, you can avoid potential future problems, such as hefty fines.

Secure and GDPR-compliant hosting at Shock Media

Shock Media is a Dutch Managed Hosting Specialist with a strong focus on IT security and privacy. We demonstrate this by being certified for both ISO 27001 and NEN 7510. Our clients are assured that their data is processed geographically separated, but within the European Economic Area (EEA). We also do everything possible to optimally protect this data, for example through our advanced security monitoring.

Would you like to know more about how we can help you protect personal data and ensure GDPR compliance? Please contact us and we’ll be happy to tell you more about the possibilities!

Interested in what you see? Share this with someone you know.

Maureen Kerkemeijer
Maureen KerkemeijerContent Marketeer
Go to:

Other news

Virtual teams, in-depth technology, complex challenges and personal growth

Working at Shock Media means working at the most enjoyable and largest managed hosting provider in the Netherlands. We build future-proof solutions wi…
Lees meer

Observability in Laravel, more insight into your application

There comes a point where your website or web application starts to grow and it becomes increasingly busy. This makes it more and more important that…
Lees meer

Hosting migrations: the migration process of Kobalt

The migration of your applications often feels like a big and exciting step. No worries. At Shock Media, we handle the most diverse migrations almost…
Lees meer

The role of Shock Media in the open web concept

Municipalities in the Netherlands must all comply with laws and regulations. This means that their websites must be secure and accessible for citizens…
Lees meer

Sovereign Cloud: Control, Compliance, and Data Localization

Many Dutch organizations place their applications and data in the cloud. Well-known platforms such as Microsoft Azure, AWS, and Google Cloud are popul…
Lees meer

Shock Media successfully completes SOC 2 and ISAE 3402 type 2 audits

In an era of stricter laws and regulations, increasing cybersecurity requirements, and supply chain responsibility, high-quality and secure Managed Ho…
Lees meer

No more hosting issues – let us help you!

With 25+ years of experience, we provide fast, secure hosting – always with personal 24/7 support. Join thousands of satisfied customers and make your website shine. Contact us now for a free consultation!
Send us a message

Personal 24/7 support

Direct contact with specialized engineers, available day and night.

Certified quality & security

ISO 27001, NEN 7510, ISO 9001, SOC 2 and
ISAE 3402 certified.

Experienced team with Linux specialists

More than 25 years of hosting expertise for business-critical environments.

We offer 24/7 managed solutions for websites, webshops, and applications. This allows you to stay focused and rely on a stable, fast, and secure environment.

  • Managed Cloud Servers
  • Managed App Platform
  • Managed Kubernetes
  • Private Cloud
  • Public Cloud
  • Linux Server Management
  • Security Management
  • All solutions

Fully optimized solutions for your framework and/or CMS. Maximum speed, performance, and technical support.

  • WordPress Hosting
  • Magento Hosting
  • Laravel Hosting
  • Drupal Hosting
  • Craft Hosting
  • Medical Hosting
  • Custom Hosting
  • All applications

With industry-specific knowledge, we give you a technological edge. Discover the possibilities and solutions that suit you!

  • Digital Agencies
  • eCommerce
  • SaaS Providers
  • Enterprise & Government
  • Healthcare
  • iGaming
  • Managed Service Providers (MSP)
  • All branches
+31 (0) 546-714360
info@shockmedia.nl
View current notifications
0