Compliance Briefing — EU & US announce Trans-Atlantic Data Privacy Framework
On 25 March 2022 the European Commission and U.S. White House announced a political agreement to create the Trans-Atlantic Data Privacy Framework, outlining new safeguards for EU-U.S. data transfers to replace Privacy Shield and address Schrems II concerns.
The European Commission and U.S. White House issued a joint statement on 25 March 2022 announcing a political agreement for a Trans-Atlantic Data Privacy Framework to enable lawful EU-U.S. personal data transfers. The framework promises stronger intelligence-collection safeguards, a Data Protection Review Court with binding remediation, and obligations for U.S. companies receiving EU data.
Organizations relying on standard contractual clauses or other transfer tools gained clearer direction on the successor regime to Privacy Shield, but must still monitor final legal texts, adequacy proceedings, and potential litigation risks before operationalizing any new transfer mechanism.
- European Commission press release outlines the political agreement, new redress mechanisms, and next steps toward an adequacy decision.
- White House fact sheet details U.S. commitments on intelligence safeguards, oversight, and independent redress through a new Data Protection Review Court.
Continue in the Compliance pillar
Return to the hub for curated research and deep-dive guides.
Latest guides
-
Third-Party Risk Oversight Playbook — Zeph Tech
Operationalize OCC, Federal Reserve, EBA, and MAS outsourcing expectations with lifecycle controls, continuous monitoring, and board reporting.
-
Compliance Operations Control Room — Zeph Tech
Implement cross-border compliance operations that satisfy Sarbanes-Oxley, DOJ guidance, EU DORA, and MAS TRM requirements with verifiable evidence flows.
-
SOX Modernization Control Playbook — Zeph Tech
Modernize Sarbanes-Oxley (SOX) compliance by aligning PCAOB AS 2201, SEC management guidance, and COSO 2013 controls with data-driven testing, automation, and board reporting.