Write email

DPF feedback period – rewieving the functioning of the cross-border agreement on data transfer

Author: Wolfgang von Sandersleben, DP-Dock GmbH
Last updated: August 2024
Category: Data Security

Since the GDPR is effective, data transfer from EU citizens to third countries has been a challenge for states that are not explicitly declared as secure by the EU Commission under an adequacy decision. The U.S. is not considered as having suitable data protection requirements. Due to the great amount of data U.S. companies import from EU citizens, the U.S. negotiated a legal arrangement with the EU Commission to ease the data transfer for companies who comply with minimum safety standards, called the Data Privacy Framework (DPF).

Since July 2023, the DPF is one option for businesses to declare themselves as compliant with the GDPR standards, in order to prove suitable data controlling or processing of personal data. However, to evaluate the efficiency of this agreement, which is the first one of its kind, the DPF requires an annual controlling mechanism to understand how far the legal framework actually guarantees adequate data protection.

Worthwhile noting, that the DPF is currently under its first periodic review by the EU Commission. The EU Commission calls for evidence by companies and individuals, as well as appropriate authorities’ evaluation on the functioning of the decision. Until beginning of September feedback is being collected. Afterwards, the EU Commission will analyze whether the DPF will uphold its efficiency and can be used further to “import” personal data from the EU.

For more info please click here.

data transfer concept, internet server connection — © Song_about_summer / stock.adobe.com | #459460758

Back to the news overview

Privacy settings

We use cookies on our website. Some of them are essential, while others help us improve this website and your experience.

In this overview you can select and deselect individual cookies of a category or entire categories. You will also receive more information about the cookies available.

Group	essential
Name	Matomo
Technical name
Provider
Expire in days	72
Privacy policy
Use	Use without cookies
Allowed
Group	external media
Name	Calendly
Technical name	__cf_bm,__cfruid,OptanonConsent
Provider	Calendly LLC
Expire in days	365
Privacy policy
Use	To arrange appointments via the provider Calendly
Allowed
Name	Contao CSRF Token
Technical name	csrf_contao_csrf_token
Provider	Contao
Expire in days	0
Privacy policy
Use	Serves to protect the website from cross-site request forgery attacks. After closing the browser, the cookie is deleted again.
Allowed
Name	Contao HTTPS CSRF Token
Technical name	csrf_https_contao_csrf_token
Provider	Contao
Expire in days	0
Privacy policy
Use	Serves to protect the encrypted website (HTTPS) against falsification of cross-site requests. After closing the browser the cookie is deleted again
Allowed
Name	PHP SESSION ID
Technical name	PHPSESSID
Provider	Contao
Expire in days	0
Privacy policy
Use	PHP cookie (programming language), PHP data identifier. Contains only a reference to the current session. There is no information in the user's browser saved and this cookie can only be used by the current website. This cookie is used all used in forms to increase usability. Data entered in forms will be e.g. B. briefly saved when there is an input error by the user and the user receives an error message receives. Otherwise all data would have to be entered again
Allowed