First annual review of Privacy Shield gives it a resounding... 'adequate'

Wednesday 18th October 2017 13:55 GMT David Roberts

So,

Nobody is currently bothering to police the agreement. Sounds effective.

17 0 Reply
1. Wednesday 18th October 2017 15:39 GMT Yet Another Anonymous coward
  
  Re: So,
  
  But when they make the ombudsperson's job permanent then he/she will have total power over the US intelligence agencies
  
  3 0 Reply
  1. Wednesday 18th October 2017 17:39 GMT Anonymous Coward
    
    Re: So,
    
    Permanent appointment, under the UPOTUS regime?, dream on.
    
    0 0 Reply
  2. Thursday 19th October 2017 08:22 GMT DropBear
    
    Re: So,
    
    "But when they make the ombudsperson's job permanent then he/she will have total power over the US intelligence agencies"
    
    Naturally! They'll get entrusted with a very serious-looking briefcase with an even more serious-looking Big Red Switch labelled "Snooping ON/OFF". It might even require multiple simultaneously inserted keys! There will be no antenna, of course, no need - it all works by, uh, quantum entanglement...
    
    1 0 Reply
Wednesday 18th October 2017 13:56 GMT Anonymous Coward

I love self certification.

I'm a self certified ninja in my spare time.

15 0 Reply
1. Wednesday 18th October 2017 14:08 GMT big_D
  
  It is like the CE mark for electrical goods, you can self certify that you are compliant. It works fine, until a customer requires certified proof that your device fulfills the requirements, then you have to get it independently certified.
  
  6 0 Reply
  1. Wednesday 18th October 2017 14:13 GMT Anonymous Coward
    
    Re : until a customer requires certified proof...
    
    Aaaaand that's when the wheels come off of this entire agreement...
    
    12 0 Reply
    1. Wednesday 18th October 2017 14:33 GMT big_D
      
      Re: Re : until a customer requires certified proof...
      
      Yep. Although our production manager was a stickler for detail and our terminals passed on the first try, the TÜV examiner said most devices need at least one re-test before they get official certification.
      
      Most big players get things properly certified straight away, because they need to have external certification in order to sell into many businesses. But for small production runs, it adds a large expense to the cost of the device - excluding your own time and destruction testing of devices, the certification process can quickly run into five figures.
      
      We also did a TÜVit system security certification for one of our IT systems, that was also very interesting.
      
      1 0 Reply
Wednesday 18th October 2017 16:45 GMT Wolfclaw

Jourová said that "so far there have been practically no complaints", so another clear answer, is that a yes or no, that the US 3 letter agencies have behaved and haven't intercepted data illegally or US companies given it away freely or under a gagging order ?

4 0 Reply
1. Thursday 19th October 2017 02:16 GMT Captain DaFt
  
  Jourová said that "so far there have been practically no complaints", so another clear answer, is that a yes or no, that the US 3 letter agencies have behaved and haven't intercepted data illegally or US companies given it away freely or under a gagging order ?
  
  Try not to read too much into this.
  
  The average schmo knows nothing, or next to nothing about it, so doesn't complain.
  
  The TLAs and US companies are mostly content, with their only complaint being; "We're not quite getting 100% of the data!"
  
  2 0 Reply
Wednesday 18th October 2017 23:11 GMT Doctor Syntax

the European Commission has ruled that it provides an "adequate" level of protection for personal data.

Let's just see what the ECJ says, shall we?

3 0 Reply
Thursday 19th October 2017 06:30 GMT Anonymous Coward

Praise

"...offering praise for the US government's efforts to date, no matter how small."

Well, it was the least they could do.

2 0 Reply