What Now? European Court of Justice Invalidates U.S.-EU Safe Harbor Accord: 10 practical ideas in 60 Minutes

Price: $0 OnDemand


Sign up today for an entire year of unlimited access to relevant, timely professional learning courses, including webinars, eLearning courses and OnDemand offerings, and keep your professional credits up to date. All for just $399.

Learn more about the subscription!



With last week’s landmark opinion, thousands of U.S. companies and their outside counsel are scrambling to conduct business as usual while trying to make sense of the impact of this landmark decision on their businesses.  
The ECJ’s invalidation of U.S.-EU Safe Harbor will significantly disrupt global data flows across every U.S. business with interests in the EU as the ruling adds layers of complexity to understanding jurisdiction over various types of personal data and IT operations.   Learn the practical ramifications and critical next steps for law firms and multinational corporations in the wake of the fallout from this decision.   
Join us for this 60-minute webinar, where experts advising companies grappling with the repeal of Safe Harbor outline five key takeaways to minimize compliance and enforcement risks in light of this seismic decision. Register now for this complimentary webinar and you will:

•Understand how Model Contracts and Intra-Group Agreements may reveal any data transfer or access gaps and see what longer term solutions may be considered.
•See how the Review of Data Flows and Prioritizing Remediation can help you ensure data transfer and storage solutions are in place -- or can be rerouted -- to minimize risks.
•Conduct Contract Analysis to pinpoint potential breaches based on the recent ECJ opinion and review data transfer pathways to identify data solutions that meet compliance standards.
•Consider EU Country-by-Country Leeway to identify where servers in the EU are located and ascertain where national authorities have less stringency.
•Initiate Outreach to DPAs and Monitor Consumer Complaints to build relationships and update procedures to minimize costly and time-consuming enforcement actions.



Hugo Teufel III is Privacy Counsel for Raytheon Company. As part of the Global Business Services (GBS) legal team, Teufel handles all aspects of privacy and data protection compliance globally within the company.  In public service, Teufel served at the Department of Homeland Security (DHS) as its Chief Privacy Officer, the first such statutorily mandated position in the federal government. Teufel’s responsibilities as the department’s second Chief Privacy Officer included assuring that the technologies used to protect the United States sustain privacy protections relating to the use, collection, and disclosure of personal information; assuring compliance with fair information practices, as set out in the Privacy Act of 1974; conducting privacy impact assessments of proposed programs; evaluating legislative and regulatory proposals involving collection, use, and disclosure of personal information by the Federal Government; and preparing an annual report to Congress on DHS. 

Prior to serving as Chief Privacy Officer at DHS, Teufel was Associate General Counsel for General Law at DHS; Associate Solicitor for General Law at the Department of the Interior; and Deputy Solicitor General for the State of Colorado. In the private sector, Teufel was a privacy co-lead in PricewaterhouseCoopers’ Advisory practice, where he advised commercial, federal and international clients on privacy and data protection issues. Teufel also practiced government contracts law at the law firms of Hall & Evans, LLP, and McKenna & Cuneo, LLP. Teufel began his legal career in Washington, D.C., clerking for the Honorable Loren A. Smith, Chief Judge, U.S. Court of Federal Claims. 


James “Jim” Koenig is of counsel in the Privacy and Cybersecurity practice at Paul Hastings and is based in the firm’s New York office. Mr. Koenig has a business, technology, and legal background and is a recognized authority on privacy, cybersecurity, and data management issues affecting consumer finance, healthcare, telecommunications, and direct and interactive marketing. Mr. Koenig has worked with an array of domestic and international clients on projects involving more than 125 countries. Over the last five years, he has represented clients in the financial services, retail, pharmaceutical, healthcare, cable, telecommunications, car rental, airline, social media, technology, and manufacturing industries, including 35% of the companies currently in the Fortune 100. Drawing on his experience and reputation with regulators, Mr. Koenig regularly advises companies on compliance practices and through regulatory investigations. 

Prior to joining Paul Hastings, Mr. Koenig built and led leading global privacy, cybersecurity/incident response, and data management practices at two global consulting firms and was a co-founder of the International Association of Privacy Professionals (IAPP). Mr. Koenig has also previously held senior marketing, management, and legal positions at QVC, MaMaMedia.com (an internet start-up focusing on children’s education), and another international law firm. He is also a named inventor or co-inventor on six patent applications relating to security and privacy-enhancing technologies.


Pedro Pavón serves as Senior Corporate Counsel for Oracle Corporation in Reston, Virginia. He is on the company’s Cloud and Ad-tech Legal Team and advises executives on commercial, data security, and information privacy risk. Prior to joining Oracle, he practiced law at a national law firm where he advised global companies on information security and data governance, cyber security, data privacy, social media law, and general corporate matters. Before entering private practice, he was counsel to the Assistant Attorney General of the United States at the Department of Justice in Washington, D.C.; attorney advisor and program manager at the U.S. Department of Energy in Washington, D.C.; and attorney advisor at the Department of Justice in Miami, Florida.