Four months after “Safe Harbor” was declared illegal, the deadline for reaching a new data transfer deal between Europe and the United States will likely pass next week with no solution.
During the transition period, companies operating in Europe were still allowed to transfer personal information and save it in U.S. data centers. But as the January 31 deadline looms, many firms that cooperate with U.S. service providers could face hefty penalties, including some German companies.
Big questions must be answered before an agreement can be reached. Is the Internet a borderless place? Who decides the data quid pro quo between companies and their customers? Representatives from the E.U.’s 28 national agencies that deal with data protection must come to an agreement Tuesday, or risk sinking tens of thousands of companies into a legal quagmire.
Even ahead of the agreement’s expiration, companies that invoke Safe Harbour are already coming under pressure. Sabre, a leading U.S.-based travel-booking network, is used by nearly a quarter of travel agents throughout Germany to book thousands of flights, cruises, hotel reservations and car rentals. The problem is, once a reservation is booked, the personal information of German customers can end up in a data center in Texas.