Alerts6.9.23
Data Privacy Standard Contractual Clauses Called Into Question After Meta Ireland Fine

Highlights
Meta Ireland decision by the Ireland Data Protection Authority calls the data protection standard contractual clauses into question
All businesses subject to U.S. Foreign Intelligence Surveillance Act Section 702 and engaging in cross-border transfers could be at risk of violating European Union law
There is currently no clear path forward for cross-border transfers of EU data to the U.S.
On May 22, 2023, the Ireland Data Protection Commission (DPC) fined Meta Ireland 1.2 billion euros for violation of the European Union’s General Data Protection Regulation (GDPR). The decision, which levies the largest fine for GDPR violations to date, held Meta Ireland did not adequately protect EU personal data during cross-border data transfers.
Keep Up to Date in a Changing World
Do you want to receive more valuable insights directly in your inbox? Visit our subscription center and let us know what you’re interested in learning more about.
