The Path Forward for Privacy Shield Participants
On July 10, the EU Commission formally adopted its adequacy decision for the EU-U.S. Data Privacy Framework, replacing the Privacy Shield Framework for the legal transfer of personal data from the EU to the U.S. Learn more about how we got here.
As the longest-running Independent Recourse Mechanism (IRM) provider, the BBB National Programs Global Privacy Division is here to help you navigate the road ahead and transition to the Data Privacy Framework.
What do I need to know?
- The EU and U.S. are adjusting their approach to data transfers. The European Commission has adopted a new adequacy determination required for the Data Privacy Framework to officially take effect. The U.S. Department of Commerce will now provide instructions to all IRMs outlining how the transition from Privacy Shield to the Data Privacy Framework should take place.
- Timeline. Learn more about the timeline here.
- What does this mean for my business?
- If you have already initially self-certified your compliance with the U.S. Department of Commerce under Privacy Shield, you do NOT need to recertify your business under the Data Privacy Framework. You have until October 10, 2023, to update your privacy policy to comply with the new Data Privacy Framework principles. All recertification dates will remain the same.
- For those not self-certified under Privacy Shield, we welcome businesses to use the form below to contact us to indicate interest in joining our IRM.
The Process
BBB National Programs is home to the longest-running Independent Recourse Mechanism (IRM) supporting businesses of all sizes for 20+ years. If you are not yet a participant, start your public commitment to the safe processing of EU, U.K, and Swiss personal data today.
1
Determine your eligibility.
Confirm your company is eligible
2
Apply online.
Submit our online application
3
Submit your materials & self-certify.
Send us your finalized application materials and self-certify with the U.S. Department of Commerce
Global Privacy Division
Through BBB National Programs' Global Privacy Division, businesses show their partners and customers that they put privacy first, no matter where they operate. Our programs serve as key elements of frameworks like the Cross-Border Privacy Rules and the Data Privacy Framework Program, bridging gaps between divergent privacy and data protection regimes. By embracing our independent accountability mechanisms, participating businesses strengthen standards for data privacy and enhance consumer trust in the digital marketplace.