The Safe Harbour Agreement was a set of principles that governed the exchange of data between the United States of America and the European Union (and Switzerland). It was ruled invalid by the European Court of Justice on 6 October 2015. The ruling has led to the creation of the EU-US Privacy Shield.
The Safe Harbour Agreement was designed to ensure data transfers between the EU and the US complied with the European Data Directive 1995. Specifically, it revolved around 7 key principles:
After a legal case between Austrian privacy campaigner Max Schrems, it was decided that US data protection laws were inadequate and it was necessary to rule the agreement invalid.
Download our latest research with Data IQ to help benchmark yourself against other organisations for the GDPR.