On August 1, 2016, the Department of Commerce began accepting Privacy Shield self-certifications. The Privacy Shield, which replaces the Safe Harbor agreement that was invalidated last year, provides a mechanism for companies to comply with European Union data protection requirements while transferring personal data from the EU to the US. Joining the Privacy Shield program is voluntary. However, once an organization publicly commits to comply with Privacy Shield principles, that commitment is enforceable under US law. To be eligible for Privacy Shield, organizations must be subject to the jurisdiction of the Federal Trade Commission or Department of Transportation, develop a Privacy Shield-compliant privacy policy statement, provide an independent recourse mechanism to investigate unresolved complaints, ensure that procedures are in place to verify compliance, and designate a Privacy Shield contact. Hundreds of organizations have already submitted applications, and some were certified by mid-August. Organizations may sign up to self-certify at www.privacyshield.gov/PrivacyShield/ApplyNow.