Important Update Regarding Bullhorn, Inc.’s GDPR Compliance

August 10, 2020


On 16 July 2020, the Court of Justice of the European Union ruled that the EU-US Privacy Shield is an invalid data transfer mechanism.  See Data Protection Commissioner v. Facebook Ireland and Maximillian Schrems Press Release (“Schrems 2”).  As a result, Bullhorn, Inc. and its affiliates (collectively, “Bullhorn Group Companies”) have entered into Standard Contractual Clauses (“SCC”) among them as authorized by the European Commission under the GDPR for the transfer of personal data from Bullhorn Group Companies in the EEA, UK, and Switzerland to Bullhorn Group Companies outside these territories.  

The SCC set forth the adequate safeguards for the protection of privacy and fundamental rights and freedoms of European individuals for such data transfers outside the EEA, UK and Switzerland.  SCC also safeguard personal data access of our data processors outside the EEA, UK and Switzerland.

In addition to entering into SCC, we have updated our Privacy Policy to reflect that data transfers to Bullhorn Group Companies outside of the EEA, UK and Switzerland will be done in accordance with the SCC.  

Bullhorn continues to observe the regulatory developments affecting these data transfers to data importers outside the EEA, UK and Switzerland after the Schrems 2 decision and the effects of the end of the BREXIT transitory period for the UK.  For additional information, please see our Privacy Policy, available at