pl
Oryginalny artykuł naukowy
Studia Iuridica

SECURITY OF CROSSBORDER DATA TRANSFER – THE EU-USA PERSPECTIVE

2025, 107, Numer 1

University of Szczecin, Faculty of Law and Administration


Data publikacji

21.12.2025

Model publikowania

open access

Rodzaj licencji


Dziedzina

Prawo

Dyscyplina

nauki prawne

Język publikacji

Polski, Angielski

Pliki do pobrania

PDF 470 KB

Artykuł

Liczba wyświetleń:59

Liczba pobrań:61

Cytowania Crossref:0

Wynik Altmetric:0


Abstrakt

In the era of the information society, the security of personal data has become a key issue, both at the individual and state levels. Significant challenges arise in the context of cross-border data transfers between the European Union and the United States, where differences in approaches to privacy protection and legal frameworks create numerous tensions and difficulties. The main issues concern the lack of coherent legal frameworks allowing for the secure transfer of personal data to the United States in compliance with EU privacy standards. Previous mechanisms, such as Safe Harbor and Privacy Shield, were deemed incompatible with EU regulations by the Court of Justice of the European Union, leaving data flows in a legal vacuum. The study aims to analyze the current conditions of cross-border data transfers between the EU and the US in the context of protecting the security and privacy of EU citizens’ data. The key outcome is to identify potential regulatory scenarios that could ensure effective protection of Europeans’ personal data. The analysis includes case studies of regulatory mechanisms (Safe Harbor, Privacy Shield) and EU legal frameworks, such as the GDPR, in light of CJEU decisions. The research also explores possible future scenarios for transatlantic data transfer cooperation, examines the political and legal differences in privacy approaches between the EU and the US, and considers alternative solutions, such as data localization or technical protection barriers.

Słowa kluczowe:

Bibliografia

Alkiş-Tümtürk A, ‘Uncertain future of transatlantic data flows: Will the United States ever achieve the “adequate level” of data protection?’ (2022) Hungarian Journal of Legal Studies 63(3),

https://doi.org/10.1556/2052.2022.00376

Bambauer DE, ‘Privacy Versus Security’, (2013) Journal of Criminal Law and Crimi-nology 103(3)

Bender D, ‘Having mishandled Safe Harbor, will the CJEU do better with Privacy Shield? A US perspective’ (2016) International Data Privacy Law 6(2), doi.org/10.1093/ idpl/ipw005

Bennett CJ, ‘Regulating Privacy: Data Protection and Public Policy in Europe and the United States’, Cornell University Press, (New York, 1992)

Bergelson V, ‘It’s Personal but Is It Mine? Toward Property Rights in Personal Information’ (2003) University of California, Davis Law Review 37, 383, 379–451; Jessica Litman, ‘Information Privacy/Information Property’ (2000) Stanford Law Review 52

Bowd C and Bigo D, ‘Directorate General For Internal Policies Policy Department C: Citizens’ Rights And Constitutional Affairs Civil Liberties, Justice And Home Affairs, The US surveillance programmes and their impact on EU citizens’ fundamental rights’, PE 474.405

Bradford L, Aboy M, Liddell K, ‘International transfers of health data between the EU and USA: a sector-specific approach for the USA to ensure an “adequate” level of protection’ (2020) Journal of Law and the Biosciences 7(1),

https://doi.org/10.1093/jlb/lsaa055

Bu-Pasha S, ‘Cross-border issues under EU data protection law with regards to personal data Protection’, (2017) Information & Communications Technology Law 26(3) doi.org/1 0.1080/13600834.2017.1330740

Burri M and Schär R, ‘The Reform of the EU Data Protection Framework: Outlining Key Changes and Assessing Their Fitness for a Data-Driven Economy’, (2016) Journal of Information Policy 6, 506

Chander Anupam, ‘Is Data Localization a Solution for Schrems II?’ (2020) Journal of International Economic Law 23 (3),

https://doi.org/10.1093/jiel/jgaa024

Chin Y-Ch and Zhao J, ‘Governing Cross-Border Data Flows: International Trade Agreements and Their Limits’, (2022) Laws 11(4),

https://doi.org/10.3390/laws11040063

Christakis Te and Terpan F, ‘EU–US negotiations on law enforcement access to data: divergences, challenges and EU law procedures and options’, (2021) International Data Privacy Law (11) 2, 81–106,

https://doi.org/10.1093/idpl/ipaa022

Colonna Liane ‘Prism and The European Union’s Data Protection Directive’, (2013) The John Marshall Journal of Information Technology & Privacy Law 4 (3)

Davies Simon, ‘Privacy Opportunities and Challenges with Europe’s New Data Protection Regime, in Privacy in the Modern Age 55, 57 (Marc Rotenberg, Julia Horwitz & Jeramie Scott (eds), The New Press 2015)

Díaz Díaz Efrén, ‘The new European Union General Regulation on Data Protection and the legal consequences for institutions, Church’, (2016) Communication and Culture 1 (1)

https://doi.org/10.1080/23753234.2016.1240912

Hallinan D and others, ‘International transfers of personal data for health research following Schrems II: a problem in need of a solution’; (2021) European Journal of Human Genetics 29,

https://doi.org/10.1038/s41431-021-00893-y

Heisenberg D, ‘Negotiating Privacy: The European Union, the United States, and Personal Protection’, in the series iPolitics: Global Challenges in the Information Age (Boulder, 2005)

https://doi.org/10.1515/9781626370074

Hoofnagle ChJ, van der Sloot B and Zuiderveen BF, ‘The European Union general data protection regulation: what it is and what it means’, (2019) Information & Com-munications Technology Law, 28:1,

https://doi.org/10.1080/13600834.2019.1573501

Jiménez-Gómez BS, ‘Cross-Border Data Transfers Between the EU and the U.S.: A Trans-atlantic Dispute Transatlantic Dispute’, (2021) Santa Clara Journal of International Law 19(2) 44

Krekora-Zając D, Marciniak B and Pawlikowski J (2021) ‘Recommendations for Creating Codes of Conduct for Processing Personal Data in Biobanking Based on the GDPR art. 40’ (2021) Frontiers in Genetics 12:711614,

https://doi.org/10.3389/fgene.2021.711614

Kuner C, ‘Reality and Illusion in EU Data Transfer Regulation Post Schrems’ (2017) German Law Journal 18(4), 881-918.

https://doi.org/10.1017/S2071832200022197

Kuner C, ‘Regulation of Transborder Data Flows under Data Protection and Privacy Law: Past, Present and Future’, (2011) OECD Digital Economy Papers 187 (OECD Publishing, Paris), 7.

https://doi.org/10.1787/5kg0s2fk315f-en

Leiner BM and others, ‘A brief history of the internet’, (2009) Computer Communication Review 39(5),

https://doi.org/10.1145/1629607.1629613

Milczarek E, ‘Prywatność wirtualna: unijne standardy ochrony prawa do prywatności w Internecie, (Warszawa 2020)

Molnár-Gábor F, Korbel JO, ‘Genomic data sharing in Europe is stumbling – Could a code of conduct prevent its fall?; (2020) EMBO Molecular Medicine 12:e11421 doi. org/

https://doi.org/10.15252/emmm.201911421

Murphy MH, ‘Assessing The Implications Of Schrems Ii For Eu–Us Data Flow, (2022) International & Comparative Law Quarterly 71(1).

https://doi.org/10.1017/S0020589321000348

Oliwiak S, ‘Giorgio Agamben o prawach człowieka we współczesnym demokratycznym państwie prawa’ in Marta Andruszkiewicz, Anetta Breczko and Sławomir Oliwniak (eds) Filozoficzne i teoretyczne zagadnienia demokratycznego państwa prawa, (Białystok 2015), 103

Patel O and Lea N, ‘EU-U.S. Privacy Shield, Brexit and the Future of Transatlantic Data Flows’, (2020) UCL European Institute Policy Paper, 9

Phillips Mark, International data-sharing norms: from the OECD to the General Data Protection Regulation (GDPR) (2018) Human Genetics 137(8), 575-582. doi: 10.1007/ s00439-018-1919-7

PP-EY Annual Privacy Governance Report 2019

Rees P, Hodgkinson D, ‘Binding Corporate Rules: A simpler clearer vision?’ (2007) Computer Law & Security Review 23(4), 352–356,

https://doi.org/10.1016/j.clsr.2007.03.004

Schrems M, ‘The Privacy Shield is a Soft Update of the Safe Harbor’, (2016) European Data Protection Law Review 148,

https://doi.org/10.21552/EDPL/2016/2/4

Schwartz PM, ‘Global Data Privacy: The EU Way’, (2019) New York University Law Review 94 (4)

Steinke G, ‘Data privacy approaches from US and EU perspectives’, (2002) Telematics and Informatics 19 (2), 193–200, )00013-2

https://doi.org/10.1016/S0736-5853(01

Strümholm S, ‘Right of Privacy and Rights of The Personality a Comparative Survey; Working paper prepared for the Nordic Conferen.ee on privacy organized by the International Commission of Jurists’ (Stockholm 1967)

Terpan F, ‘EU-US Data Transfer from Safe Harbour to Privacy Shield: Back to Square One?’ (2018) European Papers 3,

https://doi.org/10.15166/2499-8249/261

The Article 29 Working Party was the independent European working party that dealt with issues relating to the protection of privacy and personal data until 25 May 2018 (entry into application of the GDPR)

Thomson JJ, ‘The Right to Privacy’, (1975) Philosophy and Public Affairs 4, 308

Togawa Mercer Shannon, ‘The Limitations of European Data Protection As A Model for Global Privacy Regulation’ (2020) AJIL Unbound 114,

https://doi.org/10.1017/aju.2019.83

Toptchiyska D, ‘The Rule of Law and EU Data Protection Legislation: Some Controversial Issues in light of the new EU General Data Protection Regulation’, (2017) The ORBIT Journal 1(1)

https://doi.org/10.29297/orbit.v1i1.16

Tracol Xavier, ‘EU–U.S. Privacy Shield: The saga continues’, (2016) Computer Law & Security Review 32(5), 775–777, ;

https://doi.org/10.1016/j.clsr.2016.07.013

Tracol Xavier, ‘“Schrems II”: The return of the Privacy Shield’, (2020) Computer Law & Security Review 39,

https://doi.org/10.1016/j.clsr.2020.105484

Voss G W, ‘The Future of Transatlantic Data Flows: Privacy Shield or Bust?’ (2016) Journal of Ternet Law 19(11).

Vrbljanac D, ‘Personal Data Transfer to Third Countries – Disrupting the Even Flow?’ (2018) Athens Journal of Law 4 (4)

https://doi.org/10.30958/ajl.4-4-4

Vrbljanac D ‘Personal Data Transfer to Third Countries – Disrupting the Even Flow?’, (2018) Athens Journal of Law 4(4), 345, 337–358

Weiss M A and A K, ‘U.S.-EU Data Privacy: From Safe Harbor to Privacy Shield’ (Congressional Research Service, 19 May 2016) 6. <https://sgp.fas.org/crs/misc/R44257. pdf>

Westin A, ‘Science, Privacy, and Freedom: Issues and Proposals for the 1970’s. Part I-- The Current Impact of Surveillance on Privacy’ (1966) Columbia Law Review 66 (6)

Podobne publikacje