Frequently Asked Questions on Data Transfers
This set of Frequently Asked Questions (FAQs) provides certain information regarding data protection with respect to the BlueJeans Service when transferring personal data outside of the EEA and the UK. As BlueJeans is now a Verizon Company, for the broader Verizon FAQs on this topic, please see Verizon FAQs.
- What did the Court of Justice of the European Union (CJEU) rule in the Schrems II judgment?
On July 16, 2020, the CJEU invalidated the EU-US Privacy Shield framework. Other data transfer mechanisms (i.e., Standard Contractual Clauses (SCCs) and Binding Corporate Rules (BCRs)) remain valid. However, the Court also said that additional safeguards may be required when the legal system around access to data by public authorities in the recipient country does not ensure a level of protection essentially equivalent to that guaranteed within the EEA.
- Will data flows from your organization to the U.S. as part of the BlueJeans Service be interrupted as a result of the Schrems II judgment?
No, your organization’s data flows from the EEA (and the UK) to BlueJeans in the U.S. will not be interrupted as a result of the Schrems II judgment. Please see question 3. BlueJeans has always placed a premium on security and data protection and will continue to do so.
- What should I do if my organization is transferring data in the U.S. in connection with the BlueJeans Service?
To address the CJEU's concerns and facilitate the task placed on our EEA customers to verify the adequacy of the level of protection for their personal data in the U.S., data transfers out of the EEA are governed by the Verizon Binding Corporate Rules (BCRs). BlueJeans is established as a participating entity in the Verizon BCRs, which have been incorporated into BlueJeans’ Terms and Conditions (see Exhibit A, Section 7.2, available here).