A small bomb was just dropped in the GDPR landscape:

Read on techcrunch 💥

Standard contractual clauses (SCC) are still valid however, so I wonder how this will effectively improve EU residents condition, when even the processor in the US has limited or no effective recourse in their own legal system? 🤔

See "EU Privacy Shield Agreement made invalid" by David Cox for more details on the alternatives (user consent, SCC, corporate binding rules). Probably some work required to update our compliance documents and our privacy statements.