This is the third in a series of blogs on the EU-Canada trade agreement (CETA) and data protection. (Prior blogs: CETA and mass surveillance, CETA places itself above EU Charter of Fundamental Rights)
In this blog I will show CETA provides less data projection than the EU Charter of fundamental rights. Under CETA article 13.15 the EU has to allow cross border data transfers to Canada; the related data protection standard is not compatible with the Court of Justice of the EU (CJEU) Safe Harbour ruling. Chapter 13 Financial Services, article 13.15 Transfer and processing of information, page 103, reads:
“1. Each Party shall permit a financial institution or a cross-border financial service supplier of the other Party to transfer information in electronic or other form, into and out of its territory, for data processing if processing is required in the ordinary course of business of the financial institution or the cross-border financial service supplier.