Another company has received permission to use binding corporate rules (BCRs) to transfer data across borders.
The UK Information Commissioner’s Office (ICO) has authorized Hyatt to use BCRs, which are legally binding regulations that demonstrate a company’s capacity to transfer data across borders safely. The approval lets Hyatt transfer and share personal data within the company without having to use other legal instruments, such as model contractual clauses.
Hyatt is only the fifth company to be approved for BCRs in the UK. Others include Accenture, Atmel, Koninklijke Philips Electronics and General Electric. Hyatt is one of the first companies to be approved for BCRs since a new cooperation procedure went into effect to streamline the BCR approval process.
See the June 2009 issue of the Privacy Advisor to read about Accenture’s BCR approval process.