According to the latest ruling by the CJEU on data protection, the transfer of personal data from the EU to the USA is no longer permitted. This is because an EU-equal security level (based on the General Data Protection Regulation, GDPR) cannot be provided. As a result, daily processes crucial to global businesses have become uncompliant since July 2020. Few have understood the severity of the situation until now, but the threat of “deterrent” fines and reputational risks are just around the corner. Even if only politics can solve the data dilemma with an international ruling that strikes a balance between data security and pragmatism: it’s time for companies to already take action. Within a LinkedIn article hkp/// group Managing Partner Michael H. Kramarsch summarizes the most important measures companies should be considering now.