Postmark’s response to the Schrems II Judgment (Privacy Shield invalidation)

The European Union's Court of Justice for the European Union (CJEU) ruled in July 2020 that the Privacy Shield framework, which was used to transfer personal data from the EU to the US, is no longer a valid mechanism for such transfers due to the Schrems II judgment. This ruling invalidated the Privacy Shield and has significant implications for companies that rely on it for international data transfers. Postmark, a cloud-based email service provider, has responded by incorporating Standard Contractual Clauses (SCCs) into its Data Processing Addendum, which provides an additional safeguard for personal data transfers. The company has also updated its Terms of Service and Privacy Policy to reflect these changes and is providing resources to help customers conduct risk assessments and ensure compliance with the GDPR.