Privacy rights vs. terror fights: The EU and the United States are close to agreeing on how to protect personal and private data but still allow law enforcement officials to share information to fight organized crime and terrorism.

Eighteen months of closed-door talks between European and American officials have already led to agreement on key protection principles for data-sharing, according to Jonathan Faull, director of the European Commission’s justice and interior affairs department.

Faull told reporters Wednesday that formal talks could begin later this year with a final binding deal reached in 2009.

The agreement aims to end criticism from privacy advocates and EU officials who have called for more guarantees that European privacy rights are respected by U.S. authorities as they seek access to more data from Europeans for security purposes.

European and U.S. data privacy rules differ widely and have clashed in recent years over specific deals reached to transfer data taken from passengers flying to the United States and on banking and financial data transfers.

“We have reached a certain measure of common agreement on principles,” Faull said, but added the pact would not give a blank check to U.S. or European police authorities to snoop into e-mails, bank accounts, credit card details or telephone records across the Atlantic.

“It is not the case ... that anything goes,” he said.

Faull said the two sides agreed to broad guidelines that limit the time data can be used or stored, provide oversight from privacy officers, and allow individuals to access and correct data that has been collected on them.

He said negotiators had also agreed that the most sensitive and personal data will not be used, such as race or ethnic origins, political opinions, religious beliefs, trade union membership, health or sexual details. That information is declared off-limits under EU human rights and privacy rules.

The two sides still disagree on how Europeans can seek redress in U.S. courts when they feel their privacy rights have been violated. Faull said U.S. law does not let foreigners who do not live in the United States file lawsuits in such cases.

The two sides also differ in what law enforcement probes the data can be used for and whether the data can be passed on to other countries.

U.S. Homeland Security Secretary Michael Chertoff wants to develop a common database of fingerprint and personal-data screening and wants access to EU visa applicant data files.