EU–US Privacy Shield
E221479
The EU–US Privacy Shield was a transatlantic data transfer framework that governed how companies could legally move personal data from the European Union to the United States while aiming to ensure adequate privacy protections.
All labels observed (4)
| Label | Occurrences |
|---|---|
| EU–US Privacy Shield canonical | 4 |
| Safe Harbor Privacy Principles | 2 |
| Privacy Shield Principles | 1 |
| Schrems I judgment | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T1998809 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: EU–US Privacy Shield Context triple: [European Union–United States relations, hasKeyFramework, EU–US Privacy Shield]
-
A.
USA FREEDOM Act
The USA FREEDOM Act is a 2015 U.S. law that reformed government surveillance authorities, notably curbing bulk collection of Americans’ phone records while renewing and modifying key intelligence-gathering powers.
-
B.
GDPR
The GDPR (General Data Protection Regulation) is a comprehensive European Union data protection law that governs how organizations collect, process, and store personal data of individuals in the EU.
-
C.
United States v. Edward Snowden
United States v. Edward Snowden is the U.S. criminal case in which former NSA contractor Edward Snowden was charged for leaking classified surveillance documents, leading to international debates over government secrecy and privacy.
-
D.
Cybersecurity Information Sharing Act of 2015
The Cybersecurity Information Sharing Act of 2015 is a U.S. federal law that facilitates the sharing of cyber threat information between private companies and the government to improve national cybersecurity while addressing privacy and civil liberties concerns.
-
E.
European Data Protection Supervisor
The European Data Protection Supervisor is the independent EU authority responsible for overseeing the protection of personal data and privacy within European Union institutions and bodies.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: EU–US Privacy Shield Target entity description: The EU–US Privacy Shield was a transatlantic data transfer framework that governed how companies could legally move personal data from the European Union to the United States while aiming to ensure adequate privacy protections.
-
A.
USA FREEDOM Act
The USA FREEDOM Act is a 2015 U.S. law that reformed government surveillance authorities, notably curbing bulk collection of Americans’ phone records while renewing and modifying key intelligence-gathering powers.
-
B.
GDPR
The GDPR (General Data Protection Regulation) is a comprehensive European Union data protection law that governs how organizations collect, process, and store personal data of individuals in the EU.
-
C.
United States v. Edward Snowden
United States v. Edward Snowden is the U.S. criminal case in which former NSA contractor Edward Snowden was charged for leaking classified surveillance documents, leading to international debates over government secrecy and privacy.
-
D.
Cybersecurity Information Sharing Act of 2015
The Cybersecurity Information Sharing Act of 2015 is a U.S. federal law that facilitates the sharing of cyber threat information between private companies and the government to improve national cybersecurity while addressing privacy and civil liberties concerns.
-
E.
European Data Protection Supervisor
The European Data Protection Supervisor is the independent EU authority responsible for overseeing the protection of personal data and privacy within European Union institutions and bodies.
- F. None of above. chosen
Statements (48)
| Predicate | Object |
|---|---|
| instanceOf |
EU–US data protection arrangement
ⓘ
data transfer framework ⓘ international agreement ⓘ |
| aimedToEnsure | adequate level of protection for personal data transferred from the EU to the US ⓘ |
| appliesTo |
commercial organizations
ⓘ
personal data of EU residents ⓘ |
| enteredIntoForceIn | 2016 ⓘ |
| governed | transfer of HR data from EU to US for participating companies ⓘ |
| hasJurisdiction |
European Union
ⓘ
United States of America ⓘ
surface form:
United States
|
| includedMechanism |
enforcement by US authorities
ⓘ
ombudsperson mechanism for national security complaints ⓘ redress mechanisms for EU data subjects ⓘ self-certification by US companies ⓘ |
| includedPrinciple |
access
ⓘ
accountability for onward transfer ⓘ choice ⓘ data integrity and purpose limitation ⓘ notice ⓘ recourse, enforcement and liability ⓘ security ⓘ |
| legalBasis |
Article 25 of Directive 95/46/EC
ⓘ
EU data protection law ⓘ |
| providedFor | annual joint review by EU and US authorities ⓘ |
| regulates | transatlantic personal data transfers ⓘ |
| relatedTo |
EU adequacy decisions
ⓘ
GDPR ⓘ
surface form:
General Data Protection Regulation
|
| replaced |
EU–US Privacy Shield
self-linksurface differs
ⓘ
surface form:
Safe Harbor Privacy Principles
|
| requiredComplianceWith |
EU–US Privacy Shield
self-linksurface differs
ⓘ
surface form:
Privacy Shield Principles
|
| sectoralEnforcementBy |
United States Department of Transportation
ⓘ
surface form:
US Department of Transportation
Federal Trade Commission ⓘ
surface form:
US Federal Trade Commission
|
| successorFramework | EU–US Data Privacy Framework ⓘ |
| wasAdministeredBy |
U.S. Department of Commerce
ⓘ
surface form:
United States Department of Commerce
|
| wasAdoptedBy | European Commission ⓘ |
| wasAdoptedOn | 2016-07-12 ⓘ |
| wasAnnouncedBy |
European Commission
ⓘ
United States government ⓘ |
| wasChallengedBy | Maximilian Schrems ⓘ |
| wasCriticizedBy |
civil society organizations
ⓘ
privacy advocates ⓘ |
| wasInvalidatedBecauseOf |
concerns about US surveillance laws
ⓘ
insufficient judicial redress for EU data subjects in the US ⓘ |
| wasInvalidatedBy | Court of Justice of the European Union ⓘ |
| wasInvalidatedInCase |
Data Protection Commissioner v Facebook Ireland and Maximillian Schrems
ⓘ
Data Protection Commissioner v Facebook Ireland and Maximillian Schrems ⓘ
surface form:
Schrems II
|
| wasInvalidatedOn | 2020-07-16 ⓘ |
| wasNegotiatedBy |
European Commission
ⓘ
U.S. Department of Commerce ⓘ
surface form:
United States Department of Commerce
|
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: EU–US Privacy Shield Description of subject: The EU–US Privacy Shield was a transatlantic data transfer framework that governed how companies could legally move personal data from the European Union to the United States while aiming to ensure adequate privacy protections.
Referenced by (8)
Full triples — surface form annotated when it differs from this entity's canonical label.