The “EU-US Privacy Shield” was an agreement between the EU and the USA concluded in 2016, which enabled both the transfer of personal data from the EU to the USA and its storage (original document). This agreement was declared invalid by the European Court of Justice (ECJ) in July 2020, as the legal framework in the USA does not guarantee sufficient data protection with regard to the GDPR.
Since then, the judgment has repeatedly caused discussions, especially when using public cloud solutions. Especially in the case of sensitive data such as the results of an IT vulnerability analysis, the question arises as to how this data can be stored and processed in a cloud in a DSGVO-compliant, sensible and secure manner.
Our blog post deals with other current aspects of the topic.
If you want to learn more about Privacy Shield and Greenbone Cloud Services, our webinar “GDPR compliant Vulnerability Management” (available only in German language) is the right place for you. See with Greenbone’s products how you can deploy an IT vulnerability management at your customers that not only brings great managed service potential, but is also EU compliant without complicated standard contractual clauses.