← Retour au blog
tech 30 June 2026

US Supreme Court Shakes Up EU-US Data Transfers

The recent US Supreme Court decision challenges the data protection framework between the EU and the US. What are the implications for EU tech leaders and companies?

Article inspired by the original source
US Supreme Court Just Blew Up EU-US Data Transfers ↗ noyb.eu

The Supreme Court Decision and Its Implications

On June 29, 2026, the US Supreme Court delivered a landmark ruling in Trump v. Slaughter, stating that the Federal Trade Commission (FTC) may no longer be considered an independent entity. This decision has significant repercussions on the data protection framework between the European Union and the United States, which heavily relies on the independent role of the FTC.

Since 2000, the European Union has repeatedly accepted the United States as an "adequate" country for personal data protection, allowing free data flows between the EU and the US. However, this approval has been controversial, with previous annulments by the Court of Justice of the European Union (CJEU) in the "Schrems I" and "Schrems II" cases.

The EU-US Data Protection Framework

The current framework, known as the "EU-US Data Privacy Framework", was established in 2023 following the annulment of previous agreements. This framework is based on the presumption that the FTC acts as an independent data protection authority. Independence is crucial under EU law, particularly Article 16(2) of the Treaty on the Functioning of the European Union (TFEU) and Article 8(3) of the Charter of Fundamental Rights.

Why Is the FTC's Independence Crucial?

The EU's data protection model requires third countries to offer "essentially equivalent" protections to those in the EU. This includes independent oversight by a competent authority. So far, the FTC has been designated to fulfill this role on the US side. The Supreme Court's decision challenges this independence, threatening the current data protection framework.

Implications for European Businesses

For European businesses relying on US cloud services or outsourcing data processing, this decision could lead to legal uncertainty and potential hurdles. Businesses must now consider alternatives, such as data repatriation or using European providers.

Options for the Future

  • Renegotiating the Agreement: The EU could choose to renegotiate a new data protection agreement with the US, although this would take time and require robust safeguards.
  • Adopting New Technologies: Companies might accelerate the adoption of technologies like end-to-end encryption to ensure enhanced data protection.
  • Diversifying Providers: Expanding the supplier base to include companies that comply with EU data protection standards could be a viable strategy.

Conclusion

The US Supreme Court's decision marks a turning point in transatlantic data protection relations. Decision-makers and entrepreneurs must remain vigilant and proactive to ensure their data management practices remain compliant and effective.

Let's discuss your project in 15 minutes.

Data Protection FTC Independence EU-US Data Transfers Supreme Court Decision Privacy Framework
Deepthix newsletter · 100% AI · every Monday 8am

An AI agent reads tech for you.

Our AI agent scans ~200 sources per week and ships the best articles to your inbox Monday 8am. Free. One click to unsubscribe.

Visit the newsletter page →

Want to automate your operations?

Let's talk about your project in 15 minutes.

Book a call