BCRs post-Schrems II: The safe but expensive option?
Only four companies have had their Binding Corporate Rules approved in 2020. What is the future of BCRs and are they worth it? By Laura Linkomies.
In the aftermath of the Schrems II decision invalidating the EU-US Privacy Shield, the privacy activist, Max Schrems, and his noyb (none of your business) group launched 101 complaints against European companies(1). Noyb filed complaints in all 30 EU and EEA member states against companies that still forward data about each visitor to Google and Facebook. The complaints were also brought against Google and Facebook in the US, for continuing to accept these data transfers, despite them being in violation of the GDPR following the July 2020 judgement of the Court of Justice of the European Union.