EU Rules Restricting the International Transfer of Non-Personal Data
All Fintech
Cybersecurity
February 29, 2024
The Case
While the EU GDPR regulates the international transfer of personal data, several recently enacted EU laws regulate the international transfer of non-personal data, which is any data that is not “personal data” under the GDPR. In other words, these new laws apply to data that does not relate to an identified or identifiable natural person, including anonymized data and data about industrial equipment, significantly expanding the types of data subject to international transfer restrictions.
Why Does This Matter?
The EU-US Adequacy Decision has been recently adopted. It will replace the Privacy Shield, which guides companies in transferring data between the two countries through self-certification under the EU-US Data Privacy Framework.
The new Adequacy Decision Framework introduced significant improvements compared to the mechanism under the Privacy Shield.
InnReg's Experience
Since its inception in 2013, InnReg has developed deep expertise in compliance services related to customer data protection for EU-based fintechs.
Learn More About This Topic
For additional insights, read InnReg’s comprehensive guide to help with compliance towards EU regulations, as well as our analysis of the EU-US Adequacy Decision and its impact on GDPR.
All Fintech
The SEC has recently taken a series of enforcement actions against financial firms for failing to maintain and preserve electronic communications, particularly those conducted through off-channel methods like personal devices.
Broker-Dealers
Cash sweep programs, which automatically transfer uninvested cash in brokerage accounts to higher-interest accounts, are facing increased scrutiny from regulators like the SEC and FINRA, and investors.
Broker-Dealers
The North American Securities Administrators Association (NASAA) is requesting public comments on proposed revisions to NASAA’s broker-dealer conduct rule entitled Dishonest or Unethical Business Practices of Broker-Dealers and Agents (“Conduct Rule”).
