The E.U.-U.S. Privacy Shield framework has survived its first annual review. On October 18, 2017, the E.U. Commission released its report and working document on the review (Report), saying the Shield works well but there is room for improvement. Commissioner for Justice, Consumers and Gender Equality Věra Jourová said, “The Privacy Shield is not a document lying in a drawer. It’s a living arrangement that both the E.U. and U.S. must actively monitor to ensure we keep guard over our high data protection standards.” We analyze the Report’s findings and provide insight on the implications of those findings and pros and cons of self-certification under the framework from AvePoint’s chief compliance and risk officer Dana Simberkoff. She told us that there are “certainly a lot of companies using Privacy Shield and that’s a testament to the fact that it is a viable framework from the perspective of U.S. companies.” See “Navigating the Early Months of Privacy Shield Certification Amidst Uncertainty” (Nov. 2, 2016)