How to Transfer Personal Data to the US / Elsewhere after Safe Harbour's Demise

When: 9th Feb 2016, 18:00 - 9th Feb 2016, 20:00
Where: BCS, 1st Floor, The Davidson Building, 5 Southampton Street, London, WC2E 7HA
Town/City: London
Organiser: BCS IRMA (Information Risk Management and Assurance) Specialist Group
Price: BCS, ISACA or IIA Members: Free Non-members: £12.50 (+VAT @ 20%)
Further Information: Further Information

Kuan Hon, PhD(QMUL), LLM(QMUL), MSc(Imperial), LLM(UPenn), MA(Hons)(Cantab), MBCS; Consultant Lawyer, Pinsent Masons.

Event Details
The Schrems decision in October 2015 has caused much consternation among many organisations. In that case, the Court of Justice of the EU invalidated the European Commission’s Safe Harbour Decision enabling transfers of personal data from the EEA to certain US organisations / data centres. Many organisations had relied on Safe Harbour to legalise such transfers.

This case has huge ramifications for EU-based organisations (including subsidiaries of US corporations) that transfer personal data to the US, whether customer or employee data, and whether transferring to controllers or processors in the US, including the use of service providers such as US cloud providers. It is also significant to US organisations which previously received transfers from the EEA based only on Safe Harbour, as they can no longer do so legally. How can transfers to the US now be made in compliance with EEA data protection laws?

This presentation will discuss the implications of the Schrems case for organisations, focusing on practical measures to be taken in the wake of Schrems.

Speaker Profile:
Dr Hon is a Consultant Lawyer for Pinsent Masons, the law firm behind technology-focused thought leadership site Out-Law. She is also a Senior Researcher on cloud law projects at the Centre for Commercial Law Studies, Queen Mary University of London. A Solicitor of the Senior Courts of England and Wales and a (non-practising) New York Attorney, Dr Hon worked as a finance/insolvency lawyer for English and US law firms in the City of London before completing a Computing Science MSc and moving into technology law. She regularly speaks at events and conferences in the UK and abroad, including previously for CERN on cloud computing and for ENISA and Defcon London on cloud security. Her articles, many with collaborators, have been published e.g. by the IEEE 7th International Conference on Cloud Computing, International Data Privacy Law and Stanford Technology Law Review, and she is the lead author of 8 chapters of Cloud Computing Law (OUP 2013, Millard ed.), including the chapters on data protection. Dr Hon is a member of the British Computer Society’s Information Privacy Expert Panel (IPEP).


London Meeting Dates for your calendar - 2016
8 March, 12 April, 10 May, 14 June, 12 July, 13 September, 11 October, 8 November, 13 December