Cross-Border Data Transfers Clause Samples

Cross-Border Data Transfers. 18.1 The Hub shall not transfer the AET Personal Data outside the European Economic Area without AET’s prior written consent. 18.2 This clause 18 shall remain in force without limit in time.

Cross-Border Data Transfers. You agree that Customer Data processed by HTC (including its Sub- Processors) may be processed or stored in the United States or any other country where HTC (or its Sub-Processors) operate, and may be transferred outside the country in which You are located as permitted under the applicable data protection laws. If You are located in the Europe Union, and Customer Data is transferred to a third-party country outside European Economic Area, such cross-border data transfer shall subject to the Standard Contractual Clauses (Processors) attached in Schedule 2, unless such third-party country has adequate safeguards in accordance with Article 45 of EU General Data Protection Regulation.

Cross-Border Data Transfers. 6.1 Notwithstanding anything to the contrary in Oracle’s privacy policies, and subject to the Service Description and Hosting and Delivery Policies for EUSC, Oracle may store and Process Personal Information only within the selected EUSC data center region(s). 6.2 To the extent Your use of the services pursuant to the Service Description and Hosting and Delivery Policies for EUSC involves a transfer of Personal Information subject to cross-border transfer restrictions under Applicable European Data Protection Law to countries outside Europe not covered by an adequacy decision, such transfers are subject to (i) Oracle’s Binding Corporate Rules for Processors or BCR-p (also referred to as the Oracle Processor Code) and (ii) the terms of Module 2 (Controller to Processor) of the EU Standard Contractual Clauses 2021/914 of 4 June 2021. The most current version of Oracle’s Binding Corporate Rules for Processors (Oracle Processor Code) is available on ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇.▇▇▇/corporate/contracts/cloud-services/contracts.html#data-processing, and is incorporated by reference into the Services Agreement and this Data Processing Agreement. Oracle has obtained EEA authorization for its Binding Corporate Rules for Processors (Processor Code) and will maintain such authorization for the duration of the Services Agreement. Transfers to Third Party Subprocessors shall be subject to security and data privacy requirements consistent with Oracle’s Binding Corporate Rules for Processors (Oracle Processor Code), the terms of Module 2 (Controller to Processor) of the EU Standard Contractual Clauses 2021/914 of 4 June 2021, this Data Processing Agreement and the Services Agreement. 6.3 To the extent Your use of the services pursuant to the Service Description and Hosting and Delivery Policies for EUSC involves a transfer of Personal Information subject to cross-border transfer restrictions under Applicable UK Data Protection Law, to countries outside the United Kingdom not covered by an Adequacy Decision by the UK ICO, such transfers are subject to (i) the terms of Module 2 (Controller to Processor) of the EU Standard Contractual Clauses 2021/914 of 4 June 2021 as supplemented by the International Data Transfer Addendum to the EU Commission Standard Contractual Clauses version B1.0 (the “IDTA”), which are incorporated herein by reference; and (ii) when approved by the UK ICO, the approved UK Binding Corporate Rules for Processors, in the form that will be approved by the UK ICO ...

Cross-Border Data Transfers. For Users that are required to comply with international data protection laws and regulations governing the international or cross-border data transfer of information, and who are not using the Services via a local installation option, please be advised that the data centers in which the infrastructure for the Services, Documents and User Data are housed are located in the jurisdiction listed on the applicable Order Form. User must not use the Services if this causes conflict with User’s local data protection laws.

Cross-Border Data Transfers. 9.1 Transfers from the EEA, Switzerland and the United Kingdom to countries that offer adequate level or data protection. Personal Data may be transferred from EU Member States, the three EEA member countries (Norway, Liechtenstein and Iceland) (collectively, “EEA”), Switzerland and the United Kingdom (“UK”) to countries that offer an adequate level of data protection under or pursuant to the adequacy decisions published by the relevant data protection authorities of the EEA, the European Union, the Member States or the European Commission, or Switzerland or the UK as relevant (“Adequacy Decisions”), as applicable, without any further safeguard being necessary.

Cross-Border Data Transfers. 9.1 Transfers from the EEA, Switzerland and the United Kingdom to countries that offer an adequate level of data protection. Personal Data may be transferred from EU Member States and Norway, Iceland and Liechtenstein (collectively, “EEA”), Switzerland and the United Kingdom (“UK”) to countries that offer an adequate level of data protection under or pursuant to the adequacy decisions published by the relevant authorities of the EEA, Switzerland, and/or the UK as relevant (“Adequacy Decisions”), as applicable, without any further safeguard being necessary. 9.2 Transfers from the EEA, Switzerland and the United Kingdom to other countries. If the Processing of Personal Data by Processor includes a transfer (either directly or via onward transfer): (i) from the EEA to other countries which have not been subject to a relevant Adequacy Decision, and such transfers are not performed through an alternative compliance mechanism recognized by Data Protection Laws (as may be adopted by Processor in its own discretion) (“EEA Transfer”), the terms set forth in the EU SCCs shall apply; (ii) from the UK to other countries which have not been subject to a relevant Adequacy Decision, and such transfers are not performed through an alternative compliance mechanism recognized by Data Protection Laws (as may be adopted by Processor in its own discretion) (“UK Transfer”), the terms set forth in the UK Addendum shall apply; (iii) from Switzerland to other countries which have not been subject to a relevant Adequacy Decision, and such transfers are not performed through an alternative compliance mechanism recognized by Data Protection Laws (as may be adopted by Processor in its own discretion) (“Switzerland Transfer”), the terms set forth in the Switzerland Addendum shall apply; (iv) the terms set forth in Annex V of the EU SCCs (Additional Safeguards) shall apply to any EEA Transfer, UK Transfer and Switzerland Transfer, where the Standard Contractual Clauses apply.

Cross-Border Data Transfers. 6.1 Conditions for cross-border data transfers. Customer acknowledges and agrees that Contentsquare may Process Personal Data on a global basis as necessary for the performance of the Agreement, including in countries outside the European Economic Area (EEA) and/or the United Kingdom (“Third Countriesˮ), as provided in the Sub-Processor List. Customer hereby approves the transfer of Personal Data to the locations stated in the Sub-Processor List and acknowledges that the basis of such transfer between jurisdictions is acceptable.

Cross-Border Data Transfers. If required by Applicable Data Protection Laws, the Parties may negotiate in good faith to enter into further agreements necessary for cross-border transfer of Personal Information, including, but not limited to, relevant modules of approved model clauses for cross-border data transfers. This Addendum and Appendix A shall be used to complete such further agreements where such details are required by Applicable Data Protection Laws.

Cross-Border Data Transfers. 12.1. Service Provider shall not transfer any Personal Data from the country in which it was collected from Data Subjects or received from Company without express written approval from Company. In the event Company requests Service Provider to transfer Personal Data across national borders, and without prejudice to the Data Subject’s rights, Service Provider agrees to consult with Company to ensure the lawful export of Personal Data through an appropriate mechanism, the terms of which may be outlined A. Applicable Law in the importing country ensures an adequate level of protection for Personal Data , as recognized by the laws of the exporting country; B. Service Provider has in place binding corporate rules approved under Applicable Law; C. Service Provider is subject to a code of conduct with binding and enforceable commitments in accordance with Applicable Law; or D. Contractual data protection clauses have been put in place between Company and Service Provider that provide adequate protection. 12.2. Service Provider agrees to comply with any alternative lawful method of transfer as may be required by Company. This may include, without limitation: A. Where the safeguards set forth in items (i) through (iv) of paragraph (a) above are not available, that Company may request Service Provider to transfer Personal Data pursuant to the explicit consent of the data subject, once the data subject has been notified and informed of potential risks pursuant to Applicable Law.‌ B. Where the safeguards set out in items (i) through (iv) of paragraph (a) above are not available, that Company may request Service Provider to transfer Personal Data pursuant to other arrangements permitted under Applicable Law.