GDPR Glossary

What is International data transfer?

GDPR Glossary Also known as: third country transfer, cross-border transfer

Sending personal data outside the EEA — allowed only with a valid transfer mechanism.

Transferring personal data to a 'third country' outside the EEA is only lawful with a transfer tool: an adequacy decision, appropriate safeguards (like SCCs or BCRs), or a narrow derogation.

Since Schrems II, transfers often also need a transfer impact assessment to check the destination's laws.

In the Regulation

Related terms

Need this applied to your business?

Our data-protection lawyers turn GDPR terms into a working plan.

Get advice