The EU/US Privacy Shield is open for sign-ups from today. Basically, this is a voluntary agreement to which US companies can sign up and which dictates certain rights and restrictions on what a US company can do with an EU citizen’s personal data. It’s the replacement for the old Safe Harbour provisions. Privacy commentators tend to think that it doesn’t go far enough and should provide more protection than it actually does.
Once the UK leaves the EU, the Privacy Shield will no longer apply to the data of UK citizens, as far as I’m aware. In the thread following our Brexit discussion, there was frequent suggestion that a good reason to leave the EU was that it’s not always good to be bound by decisions that may not benefit the UK just because the EU have decided for us. Quoting a few people from that thread (and I have tried to not take comments out of context, but if you feel I have, I apologise): @paddy referred to “the freedom now available [to the UK] to pursue opportunities outside of a sclerotic European economy”, @blueish4 suggested that it was bad that “we don’t control the entirety of our laws and the highest courts are not in the country, but EU associated and we have such a dissenting voice inside the EU that the project is barely politically beneficial”, @breezer mentioned “sovereignty and some EU laws that have done us harm in the past”, and @gerv pointed out that “the EU has some good ideas for laws; but the entire point of sovereignty is that we could adopt their good ideas and not adopt their bad ones”.
Separately, @Dave wondered
So this seems like a useful test case, I think. The EU have introduced a ruling, the Privacy Shield, with which I think most of the Bad Voltage community would agree; those that don’t agree will mostly feel (as I do) that it doesn’t go far enough, not that it’s actually wrong. The UK will no longer benefit from that rule after Brexit. So here’s the chance, right? One of these things might be the case, for each person reading, so let’s have a bit of a poll.
- The UK is free from having the EU impose the Privacy Shield, but that’s OK because the Privacy Shield isn’t very good and the UK will introduce better legislation which does more to protect UK citizens
- The Privacy Shield is a bad idea (not just that it could be better), and the EU should not have done it or anything like it
- The Privacy Shield is a good idea (although it could be better), and UK citizens would be better off to have it, but now they will be worse off because they’ll lose its protection and the UK government will not introduce anything similar
I’d be interested in your thoughts.