On September 28, 2020 the NTIA (National Telecommunications and Information Administration) published a White Paper on the consequences of the ECJ's Schrems II ruling. The White Paper is not legally binding, but contains a number of arguments that US data importers may use in their individual risk analysis that is required by the ECJ and the European Data Protection Board.