European Union: European Parliament Report on Exchanges of Personal Data After the Schrems II Judgment

The European Parliament's Committee on Civil Liberties published a report on the "Exchanges of Personal Data After the Schrems II Judgment". According to the report, no US federal or state privacy law is likely to provide a data protection level equivalent to the EU GDPR in the near future. Nevertheless, the report formulates recommendations to facilitate data transfers between EU-US under a new institutional arrangement: firstly, the EU should adopt stop-gap measures (e.g., audits, logs, reporting procedures) to allow the transfer of some categories of data; secondly, the EU Members should negotiate a "no spying on allies" agreement with the "Five Eyes" alliance; thirdly, the EU should recommend the US to start reforming its privacy laws in order to enhance the privacy powers of the Federal Trade Commission and introduce a private right of action (for foreign nationals), with the final aim to enforce a new EU-US arrangement for self-certification by US data controllers