Morrison Foerster is an international law firm with lawyers practicing throughout the United States, Asia, and Europe. Click to discover more.

mofo_share_image.jpg

Morrison Foerster

common-default.jpeg

Terms / Notices

Cookies

Privacy Policy

Reporting Hotline

Attorney Advertising

Alumni

  Linkedin

MoFo LinkedIN

  Facebook

MoFo Facebook

YouTube

MoFo Youtube

Morrison Foerster - Footer

How New E-Evidence Rules Will Affect EU-US Data Transfers

You have not solved the recaptcha challenge yet or session expired, try again.

Email Disclaimer

Disclaimer

Unsolicited e-mails and information sent to Morrison Foerster will not be considered confidential, may be disclosed to others pursuant to our <a href="https://www.mofo.com/about/privacy-policy.html">Privacy Policy</a>, may not receive a response, and do not create an attorney-client relationship with Morrison Foerster. If you are not already a client of Morrison Foerster, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.

Feedback

mofo-logo-2022.svg

People

Capabilities

Resources

About

Community

Offices

Careers

Stay Connected

In an article recently authored for Law360, Alex van der Wolk, chair of Morrison Foerster’s European Data, Cyber + Privacy...

<h3>Sorry, we weren’t able to find the terms you entered.</h3>Please try a different term or keyword.

People

Capabilities

Resources

Not Found Cards

We are Morrison Foerster — a global firm of exceptional credentials. Our clients include some of the largest financial institutions, investment banks, and Fortune 100, technology, and life sciences companies. Our lawyers are committed to achieving innovative and business-minded results for our clients, while preserving the differences that make us stronger.Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations. Prior results do not guarantee a similar outcome.

About Morrison Foerster

people-default-header-desktop.jpg

people-default-header-mobile.jpg

Default Meta Data

In an article recently authored for Law360, Alex van der Wolk, chair of Morrison Foerster’s European Data, Cyber + Privacy practice, and Dan Alam, Data, Cyber + Privacy associate, looked back at how cross-border requests from law enforcement have historically been viewed within the EU, and how new e-evidence regulation will change that approach, while also discussing the challenges that EU and U.S. businesses will face navigating conflicting obligations across the two continents.Regulatory changes set to apply in August 2026 (Regulation (EU) 2023/1543) respond “to a pressing need to obtain and preserve digital evidence necessary for criminal investigations, noting that relevant data are increasingly stored outside the EU and existing mechanisms are too slow,” as they noted.“Once in force, the e-evidence regulation and accompanying national laws will enable EU courts and law enforcement authorities to compel service providers to produce and preserve electronic data, including data held outside the EU, on compressed timelines and without reliance on mutual legal assistance treaties, or MLATs. This approach brings the EU significantly closer to the model employed by U.S. law enforcement authorities, pursuant to the U.S. Stored Communications Act and the Clarifying Lawful Overseas Use of Data Act, or CLOUD Act.”However, there are challenges, as they discussed: “This convergence may undermine the position that direct law enforcement requests for data across borders are inherently incompatible with EU data protection principles, and may prompt a reassessment of how the GDPR applies to transfers made in response to non-EU law enforcement requests. Until a CLOUD Act agreement between the EU and the U.S. is concluded, service providers will continue to navigate competing legal obligations, and the need for legal certainty in this area remains necessary.”Read the <a href="https://media2.mofo.com/v3/assets/blt5775cc69c999c255/bltee7bb745fa23ab50/6a03469edf50bb1df328febf/250512-how-new-e-evidence-rules-will-affect-eu-us-data-transfers.pdf" target="_blank">full article</a>.

How New E-Evidence Rules Will Affect EU-US Data Transfers

Sign Up

<div class="videoWrapper">Alex van der Wolk, managing partner of the firm’s Amsterdam office and chair of Morrison Foerster’s European Data, Cyber + Privacy practice, employs his nearly 20 years of experience to advise global companies on their most complex data strategies and compliance programs governing all aspects of information management. Alex’s clients benefit from his practical approach and global perspective, saying: “he quickly gets to the heart of the issue and provides solid, pragmatic advice based on the experience he has gained,” “in addition to having very strong legal knowledge, he has a commercial understanding and provides great insight in global matters,” and  “Alex is a true privacy expert with the ability to offer practical guidance on complex problems” (Chambers EU).</div>Alex helps clients develop privacy and data strategies at the forefront of their digital and data-driven endeavors, especially those involving new technologies, such as artificial intelligence and the metaverse. He has particular experience assisting clients with structuring their approach to data in specialized areas, such as health-tech, Agtech, and Adtech. Alex is an experienced litigator, representing clients in privacy litigation in Europe, including successfully representing clients in the first class action cases in the Netherlands and the UK. Additionally, Alex is often called upon to head crisis management teams for clients facing investigations by data protection authorities or responding to cybersecurity incidents. He counsels clients on their incident and cyber preparedness and has done significant work advising clients on EU cyber and data regulatory frameworks, such as NIS2, DORA, the Cyber Resilience Act, and the EU Data Act.Notably, Alex was one of the first practitioners in Europe to help companies set up Binding Corporate Rules (BCRs), and since that time has used this deep knowledge to develop a longstanding and unparalleled track record in obtaining regulatory approval for BCRs, both in the EU and in the UK.Alex is a frequent speaker at high-profile international conferences, including IAPP and South by Southwest (SXSW), and is a guest lecturer at the Tilburg Institute for Law, Technology, and Society. He is a Dutch-qualified lawyer and a member of the Amsterdam and Brussels Bars. He speaks fluent English and Dutch.

Alex van der Wolk

Managing Partner, Amsterdam

Dan Alam is an associate in Morrison Foerster’s global Data, Cyber + Privacy Group, based in London. He advises multinational companies on complex data, cyber, privacy, and AI matters, with a particular focus on engagements before data protection authorities and related regulators. His practice also includes supporting companies with product counselling, security incidents, international data transfers, privacy litigation, M&A, and the development of global compliance programmes. Dan is recognised as a key lawyer in The Legal 500 UK for privacy, data protection and cybersecurity (2024 - 2026).Dan regularly advises on multijurisdictional matters across a broad range of sectors, including technology, semiconductors, interactive media, insurance, pharmaceuticals, hospitality, retail, and logistics.A core part of Dan’s practice is advising on regulatory engagement and contentious matters, including strategic engagement with the UK Information Commissioner’s Office and EU data protection regulators, responses to enquiries and investigations, and the handling of sensitive issues involving direct marketing, data subject rights, children’s data, and security incidents. He also defends companies against privacy and data protection compensation claims and provides specialist data protection and AI support on public and private transactions, with particular experience on deals involving technology, semiconductor, and AI companies.Dan also has notable experience in workplace and HR privacy matters, including employee monitoring, whistleblowing frameworks, and the collection and use of diversity, equity and inclusion data. He has helped multinational organisations design and implement global whistleblowing systems and navigate legal requirements in sensitive people-data contexts.Examples of Dan’s other experience include:<ul><li>advising technology companies on the launch of new products, including AI systems;</li><li>guiding companies through large-scale cybersecurity incidents, including ransom and extortion events;</li><li>advising on compliance with cross-border data transfer and data localisation restrictions;</li><li>supporting multinational organisations on audits and maturity assessments of their data protection compliance programmes;</li><li>negotiating strategic data processing and data sharing arrangements; and</li><li>supporting purchasers, sellers, and investors on data, cyber and AI issues arising in public and private M&A transactions.</li></ul>Before joining Morrison Foerster, Dan was a Legal Intern at the Irish Data Protection Commission.Dan is also active in the firm’s pro bono practice, advising charities and NGOs on matters including social security and statelessness. He was part of the collaboration between Asylum Aid and various law firms that received the Law Society of England and Wales’ “Excellence in Pro Bono” Award in 2021 for work addressing statelessness in the United Kingdom. He also serves as chair of MoFo Together, Morrison Foerster London’s ethnic minority <a href="/culture/diversity/affinity-groups" target="_self">affinity group</a>.Dan is qualified as a solicitor in England and Wales.