EU Still Blocking Social Media Users' Data Transfer

Uploaded on 2022-08-26 in TECHNOLOGY-Key Areas-Social Media, FREE TO VIEW, BUSINESS-Services-Law

Meta has said it is considering shutting down Facebook and Instagram in Europe if it can’t keep transferring user data back to the US. Recently, the EU has protected social media sites like Facebook and Instagram from shutdown. According to the GDPR, US intelligence agencies must now be blocked from accessing EU data.

That’s a dilemma. It’s difficult to exchange data between the US and EU without breaking the law on one of the continents.

A draft decision by the data privacy  regulatory authority in Ireland (where Facebook is domiciled in the EU for tax reasons) to block the social media sites' parent company Meta's data transfers from Europe to the US is stuck in the process, as regulators from across the EU argue over the details.

Meta processes European data in US data centres, including the data of Instagram and Facebook users and, according to US laws, intelligence agencies must be able to access data stored within US territory. 

In July Ireland's privacy regulator decided to block Facebook's owner Meta from using a last legal mechanism called standard contractual clauses to transfer large amounts of messages across the Atlantic. The Irish decision followed a 2020 European Court of Justice ruling that deemed large transfers of data between Europe and the US illegal because they expose Europeans to US government surveillance risks.

Meta has repeatedly said that a decision blocking its transfers would force it to shutter its Facebook and Instagram offerings in Europe.

However, the Irish decision is still pending review by other authorities in Europe. A spokesperson for the Irish regulator has said that it had received objections from several other EU regulators to its draft order, which effectively delays a final decision to shut down the data flows and gives Facebook some much needed breathing space.   

A spokesperson for the Irish regulator has said that it had received objections from several other EU regulators to its draft order, which effectively delays a final decision to shut down the data flows and gives Facebook some badly-needed breathing space.  

The Irish regulator is now expected to take time to resolve the objections. It previously has taken the regulator up to four months to attempt to tweak decisions upon request of other European regulators. If the Irish regulator fails to resolve the dissenting opinions, as it has done in most of its decisions against the US Big Tech firms, it would have to trigger an official dispute resolution mechanism.

This would bring in the European Data Protection Board, delaying the process by at least another month.

All these delays would put Meta within touching distance of being able to keep its data flows to the US alive through a new transatlantic data pact, which negotiators plan to complete within the first quarter of 2023. With the new EU-US data deal in place, Meta and thousands of other companies would be able to use that agreement to move people’s information across the Atlantic.

EU Curia:    Politico:   Politico:     AdWeek:      CNBC:     Techzine:    SEC:     Inc42

You Might Also Read: 

Ireland's Privacy Regulator Is Investigating Instagram:

 

« Think Carefully Before You Pay For Cloud Downtime Insurance
Bluetooth Standards Are Reshaping Medical Devices »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

First Response

First Response

First Response is a Cyber Incident Response and Digital Forensic Investigation company.

Cyxtera Technologies

Cyxtera Technologies

Cyxtera offers powerful, secure IT infrastructure capabilities paired with agile, dynamic software-defined security.

Tech Nation

Tech Nation

Tech Nation is the UK’s first national scaleup programme for the cyber security sector, aimed at ambitious tech companies ready for growth, at home and abroad.

Censys

Censys

Our customers rely on Censys data to get the global visibility they need of their attack surfaces in order to proactively prevent nation-state attacks and emerging threats.

DataPassports

DataPassports

DataPassports is a data-centric security and privacy solution that enforces privacy and security from end-to-end with transparent protection of data at the source.

SyferLock Technology Corp.

SyferLock Technology Corp.

SyferLock is an innovative provider of next-generation authentication and security solutions.

Brookcourt Solutions

Brookcourt Solutions

Brookcourt Solutions delivers cyber security, network monitoring technologies and managed security services to help secure and protect your organisation’s critical infrastructure.

Alcon Maddox

Alcon Maddox

Alcon Maddox is a niche recruitment and executive search firm specialised in sourcing exceptional Cyber Security sales and commercial leadership talent. Serving clients across the Middle East & Europe

Xopero Software

Xopero Software

Xopero Software develops a comprehensive range of professional tools for protecting and restoring critical business data.

Valence Security

Valence Security

Valence manages and secures your Business Application Mesh by delivering visibility, reducing unauthorized access and preventing data loss.

LayerX Security

LayerX Security

LayerX's user-first browser security platform turns any browser into the most protected & manageable workspace, by providing real-time monitoring and governance over users’ activities on the web.

Trustmarque

Trustmarque

Trustmarque delivers customer-centric IT solutions that enable better outcomes. We combine the technology, expertise and services to release value at every stage of the IT lifecycle.

Nexer

Nexer

Nexer is a modern tech company with expertise in strategy, technology and communication with a strong vision.

Red Helix

Red Helix

Red Helix (formerly Phoenix Datacom) is a market leader in network performance and cyber security.

NOYB

NOYB

NOYB is a non-profit organization aiming to close the gap between privacy laws and the reality of corporate practice.

Realm.Security

Realm.Security

Realm.Security is pioneering the creation of an easy-to-implement, simple-to-use security fabric solution that is purpose-built for cybersecurity.