Customs and Border Protection Passenger Name Record Privacy Statement for PNR Data Received in Connection with Flights Between the U.S. and the European Union [open pdf - 13KB]
"United States law requires airlines operating flights to or from the United States to provide the Department of Homeland Security, Bureau of Customs and Border Protection (CBP) with certain passenger reservation information ('passenger name record data' or PNR) for purposes of preventing and combating terrorism and other serious criminal offences that are transnational in nature. The European Commission has determined that U.S. laws, in conjunction with CBP policies regarding the protection of personal data and the U.S.-EU Passenger Name Record Agreement signed on May 17, 2004, are adequate to permit transfers of PNR data to the U.S. For more information see http://europa.eu.int/comm/internal market/privacy/index_en.htm. For a comprehensive explanation of the manner in which CBP handles PNR collected from flights between the European Union (EU) and the U.S., please refer to the Undertakings of the Department of Homeland Security, Customs and Border Protection ('PNR Undertakings') http://www.dhs.gov/interweb/assetlibrary/CBP-DHS_PNRUndertakings5-25-04.pdf."
United States. Dept. of Homeland Security: http://www.dhs.gov/