On September 21, 2023, the UK and the U.S. announced the UK extension to the EU-U.S. Data Privacy Framework (DPF), which will come into effect on October 12. A new UK adequacy regulation provides that the UK Secretary of State for Science, Innovation and Technology has determined that the U.S. provides adequate levels of protection for personal data in certain transfers and brings the UK within the DPF announced in July 2023. The U.S. Attorney General also designated the UK as a “qualifying state” under an Executive Order on September 18 for the purposes of the DPF. This means that on October 12, UK businesses will be able to transfer personal data to U.S. organizations self-certified under the DPF.
Join Sidley and OneTrust DataGuidance in a discussion with key players in international data transfers, including:
- Morgane Donse, Deputy Director, International Data Flows, Department for Science, Innovation and Technology
- Alex Greenstein, Director, Privacy Shield, Office of Digital Services Industries, Industry and Analysis, U.S. Department of Commerce, International Trade Administration
- Neema Singh Guliani, Deputy Assistant Secretary for Services, U.S. Department of Commerce
- Lauren Kitces, Senior Managing Associate, Privacy and Cybersecurity, Sidley (Washington, D.C.)
- William Long, Partner and Global Co-Leader, Privacy and Cybersecurity, Sidley (London)
- Alan Raul, Partner and Global Co-Leader, Privacy and Cybersecurity, Sidley (Washington, D.C.)
Key topics will include:
- A discussion of significant points and implications of the new UK-U.S. Data Bridge
- What organizations should know about the new UK-U.S. Data Bridge
- Strategies for data transfers from the UK
This post is as of the posting date stated above. Sidley Austin LLP assumes no duty to update this post or post about any subsequent developments having a bearing on this post.