Hello, everyone
I'm trying to understand what business processes and technical safeguards would be sufficient to put in place when exporting EU data subjects' personal information to third countries which are not considered adequate by the European Commission ie/ outsourcing call centre operations to India. Does anyone have experience of using either of the standard contracts? Or have you tried to implement the 'Safe Harbor' arrangement with the US?
I'm writing a summary of the Data Protection Directive (95/46/EC) and the Directive on Privacy and Electronic Communications (2002/58/EC) for a telecoms magazine and would like to give an insight into some of the situations (other than for billing and marketing) where the network architecture needs to use personal preferences and profiles. Any ideas?
Thanks in advance for your help.
Jo Archer
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|