Securiti launches Gencore AI, a holistic solution to build Safe Enterprise AI with proprietary data - easily

View

Cross-Border Data Transfers Under GDPR: Lessons From Uber’s €290 Million Fine

This infographic will provide you with:

  • Measures and processes your organization can adopt to ensure compliance with the GDPR’s provisions related to cross-border data transfers;
  • Appropriate alternatives to adopt in case the initially recommended safeguards and measures cannot be implemented;
  • Appropriate Securiti modules and products that can help your organization comply with various necessary international data transfer obligations per the GDPR.

DOWNLOAD INFOGRAPHIC

Award-winning technology, built by a proven team, backed by confidence. Learn more.

The Dutch DPA recently fined Uber a mammoth €290 million ($324 million), citing its violation of GDPR provisions related to cross-border data transfers. While Uber has since made public its intention to appeal the fine, this episode should reiterate the importance of adhering to the GDPR’s strict international data transfer obligations for others.

Securiti’s detailed infographic illustrates the critical steps all organizations can take to ensure their compliance with the GDPR’s cross-border data transfer requirements.

This infographic not only informs but also provides practical guidance on measures that can be implemented at once, thereby elevating an organization’s ability to continue their cross-border data transfers in a GDPR-compliant manner effectively.

Cross-Border Data Transfers Under GDPR

Frequently Asked Questions

Here are some of the commonly asked questions related to the fine imposed by the Dutch DPA on Uber in August 2024:

Under the GDPR, organizations may only transfer data outside the EU's jurisdiction by relying on three mechanisms. These include an adequacy decision, appropriate safeguards such as binding corporate rules (BCRs), standard contractual clauses (SCCs), or specific derogations, which can only be used in the case of non-repetitive transfers. 

This investigation began after French Uber drivers complained about the company mishandling their sensitive data. The French data protection authority began its initial investigation. Then, it forwarded the complaint to the Dutch DPA since all such complaints must be forwarded to the DPA of the EU country where the alleged offending company is headquartered, which is the Netherlands in the case of Uber. 

Yes, Uber has disagreed with the decision and their plans to appeal the Dutch DPA's fine arguing that they had appropriate data protection mechanisms in place. Additionally, they contend that the transfer's legal basis was within the regulatory provisions. 

All-in-One Solution For Your Business Needs

The Multi-disciplinary practice to grow trust-equity of your brand and comply with privacy regulations

Australia Privacy Amendment Bill 2024

Gain insights into the major reforms to the Privacy Act 1988 brought by the Australian Government’s Privacy and Other Legislation Amendment Bill 2024. Learn more.

Understanding Key Healthcare Laws in Canada: What You Need to Know

Securiti's infographic provides a detailed overview of each organization's specific obligations under Canada’s various healthcare laws. Sign up to access it now.

What are the Obligations Under the EU AI Act?

Securiti's infographic provides a detailed overview of each organization's specific obligations under the EU's AI Act. Sign up to access it now.

Applicability of the EU AI Act

Download the infographic to visualize the EU AI Act's applicability triggers for different types of covered entities. Ensure compliance today.

Obligations of Entities Under the AI Act

Learn more about organizations’ key obligations under the AI Act to deploy AI technologies ethically and reliably across industries.

Top 10 Considerations for Enabling Safe Use of Unstructured Data with GenAI

Without proper oversight, unstructured data could result in sensitive data exposure. This infographic outlines some important considerations to enable safe use of unstructured data for GenAI.

Comparative Infographic of the US State Privacy Laws

This visual guide compares, contrasts, and highlights the key aspects of US state privacy laws, their obligations, data subject rights, exemptions, and non-compliance penalties.

Mastering PCI DSS Compliance

Download the infographic – Mastering PCI DSS Compliance to leverage a visual guide to the 12 PCI DSS requirements. Ensure PCI DSS compliance today.

Japan Gen AI Instructions

Dive into Japan’s Gen AI Instructions and learn about responsibilities, best practices and considerations regarding the use of Gen AI products and services.

The 8 Sins of GenAI

Generative Artificial Intelligence, also called GenAI, opens a whole new world of opportunities and technological advancements. From powering conversational chatbots and creative assets to driving enterprise tech and the healthcare sector, GenAI heralds a future that was once...

What's
New