A new report indicates that US tech giants like Facebook and Netflix are failing to handle US-EU data transfers legally – but the US government is claiming that it shouldn’t be cause for concern.
Austrian privacy campaigner Max Schrems made use of his legal right to ask 33 companies how they handle personal data transfers such as which countries customer data is sent to and on what legal basis.
“The responses ranged from detailed explanations, to admissions that these companies have no clue what is happening, to shockingly aggressive denials of the law,” says Schrems.
Some companies, including Airbnb, Netflix, and WhatsApp didn’t reply to requests for information, while others simply redirected researchers to their privacy policies. Microsoft, says Schrems, answered every question – but claimed it could transfer personal data to the US under Standard Contractual Clauses, despite clearly providing data to the US government under FISA702.