Transferring personal data out of “adequate” GDPR jurisdictions is arguably the most complex and time-consuming problem in data protection, particularly since the invalidation of the “Privacy Shield” framework in June 2020.

Even with fresh guidance from the European Data Protection Board (EDPB) and a new sets of standard contractual clauses, many unanswered questions remain. There has been a flurry of regulatory activity against controllers using common tools like Google Analytics, Zoom and Stripe.This means hundreds of thousands of companies are potentially exposed to the risk of enforcement action.

PrivSec Risk In Focus will speak to experts on data transfers and senior data protection professionals to discuss the steps your organisation should be taking to mitigate the risk of unlawful data transfers under the GDPR.