Data Sharing

Adequate countries are those countries which the European Commission has determined has data protection rules which are in line with...

Binding corporate rules (BCR) are internal rules for international data transfers within multinational companies.  An important distinction is that BCR...

Certification mechanisms will enable organisations to demonstrate compliance to other organisations through the use of data protection seals or marks. ...

Codes of conduct will be used by an industry body to undertake a procedure which is standardised and has controls...

A contract addendum may be required if a data processor contract does not contain all of the required data protection...

A contract with a data processor is essential in order to remain compliant with the regulation, there are specific requirements...

A data processor is any person, authority, organisation or other body which processes data on behalf of a data controller. In essence,...

A Data Processor Security Assessment is often used to determine the information security risks associated with contracting with a third...

International Data Transferrings containing personal data is deemed higher risk and therefore safeguards, designed to provide the data subject with...

An International Transfer Derogation is an exception specified within the regulation for transferring data internationally without adhering to one of...