CFA has joined more than two dozen civil society groups in calling on European leaders reviewing the “Privacy Shield” data-transfer agreement to make clear that the arrangement is not enough. The Privacy Shield is intended to allow companies to share data about customers across the Atlantic. Unfortunately, the Privacy Shield fails to provide sufficient clarity, oversight, remedy, or protections for the human rights of E.U. citizens against U.S. surveillance practices. The letter specifically calls for legislative reform of U.S. surveillance laws, increased protections for personal data, and additional redress and transparency mechanisms.