International Data Transfers
Expert-defined terms from the Professional Certificate in GDPR and AI Data Privacy Compliance course at London School of Planning and Management. Free to read, free to share, paired with a professional course.
Adequacy Decision refers to a decision made by the European Commission that a no… #
Related terms include third-country transfers and data protection.
Anonymization is the process of transforming personal data into a de #
identified form, making it impossible to link the data to an individual. Related terms include pseudonymization and data protection by design. Anonymization is a technique used to protect personal data, and it is often used in conjunction with other data protection measures.
Artificial Intelligence refers to the development of computer systems that can p… #
Related terms include machine learning and data analytics. Artificial Intelligence is a key concept in the field of data science, and it has many practical applications in areas such as healthcare and finance.
Binding Corporate Rules refer to a set of data protection rules that are… #
Related terms include data protection policies and compliance programs. Binding Corporate Rules are a type of data transfer mechanism that allows companies to transfer personal data within their organization while ensuring that the data is protected.
Cloud Computing refers to the delivery of computing services over the interne… #
Related terms include cloud storage and software as a service. Cloud Computing is a key concept in the field of information technology, and it has many practical applications in areas such as business and education.
Consent refers to the agreement of an individual to the processing of their pers… #
Related terms include data subject rights and privacy notices. Consent is a key concept in the field of data protection, and it is often required before personal data can be processed.
Cookie refers to a small text file that is stored on a user's device by a websit… #
Related terms include tracking technologies and online advertising. Cookies are commonly used by websites to collect data about their users, and they can be used to deliver targeted advertisements.
Data Breach refers to the unauthorized access, disclosure, or loss of personal <… #
Related terms include data security and incident response. Data Breach is a key concept in the field of data protection, and it can have serious consequences for individuals and organizations.
Data Controller refers to the entity that determines the purposes and means of t… #
Related terms include data processor and data protection officer. Data Controller is a key concept in the field of data protection, and it is often responsible for ensuring that personal data is processed in accordance with data protection laws.
Data Erasure refers to the process of permanently deleting or destroying persona… #
Related terms include data minimization and data retention. Data Erasure is a technique used to protect personal data, and it is often used in conjunction with other data protection measures.
Data Minimization refers to the principle of collecting and processing only the… #
Related terms include data quality and data protection by design. Data Minimization is a key concept in the field of data protection, and it is often required by data protection laws.
Data Portability refers to the right of an individual to transfer their personal… #
Related terms include data subject rights and interoperability. Data Portability is a key concept in the field of data protection, and it is often required by data protection laws.
Data Processor refers to the entity that processes personal data on behal… #
Related terms include data controller and data protection officer. Data Processor is a key concept in the field of data protection, and it is often responsible for ensuring that personal data is processed in accordance with data protection laws.
Data Protection by Design refers to the principle of designing systems and proce… #
Related terms include data protection by default and privacy by design. Data Protection by Design is a key concept in the field of data protection, and it is often required by data protection laws.
Data Protection Impact Assessment refers to the process of assessing the potenti… #
Related terms include data protection officer and risk assessment. Data Protection Impact Assessment is a technique used to protect personal data, and it is often used in conjunction with other data protection measures.
Data Protection Officer refers to the individual responsible for ensuring that a… #
Related terms include data controller and compliance program. Data Protection Officer is a key concept in the field of data protection, and it is often required by data protection laws.
Data Subject refers to the individual whose personal data is being proces… #
Data Subject is a key concept in the field of data protection, and it is often the focus of data protection laws.
Data Subject Rights refer to the rights of an individual to control their person… #
Related terms include data protection and privacy notices. Data Subject Rights are a key concept in the field of data protection, and they are often required by data protection laws.
Data Transfer Agreement refers to a contract between two organizations that outl… #
Related terms include data protection and compliance program. Data Transfer Agreement is a type of data transfer mechanism that allows organizations to transfer personal data while ensuring that the data is protected.
Encryption refers to the process of transforming plaintext into unreadable ci… #
Related terms include data security and access control. Encryption is a technique used to protect personal data, and it is often used in conjunction with other data protection measures.
European Data Protection Board refers to the independent body responsible for en… #
European Data Protection Board is a key concept in the field of data protection, and it plays a crucial role in ensuring that data protection laws are enforced.
General Data Protection Regulation refers to the EU regulation that outlines the… #
General Data Protection Regulation is a key concept in the field of data protection, and it is often required by data protection laws.
Information Commissioner's Office refers to the independent body responsible for… #
Information Commissioner's Office is a key concept in the field of data protection, and it plays a crucial role in ensuring that data protection laws are enforced.
International Data Transfer refers to the transfer of personal data from… #
International Data Transfer is a key concept in the field of data protection, and it is often required by data protection laws.
Machine Learning refers to the development of computer systems that can learn an… #
Related terms include artificial intelligence and data analytics. Machine Learning is a key concept in the field of data science, and it has many practical applications in areas such as healthcare and finance.
Personal Data refers to any information that can be used to identify an individu… #
Personal Data is a key concept in the field of data protection, and it is often the focus of data protection laws.
Pseudonymization refers to the process of transforming personal data into… #
Related terms include anonymization and data protection by design. Pseudonymization is a technique used to protect personal data, and it is often used in conjunction with other data protection measures.
Right to be Forgotten refers to the right of an individual to have their persona… #
Right to be Forgotten is a key concept in the field of data protection, and it is often required by data protection laws.
Sensitive Personal Data refers to personal data that is considered sensit… #
Sensitive Personal Data is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Standard Contractual Clauses refer to a set of contractual clauses that are used… #
Standard Contractual Clauses are a type of data transfer mechanism that allows organizations to transfer personal data while ensuring that the data is protected.
Third #
Country Transfer refers to the transfer of personal data from the EU to a non-EU country. Third-Country Transfer is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Transfer Impact Assessment refers to the process of assessing the potential risk… #
Transfer Impact Assessment is a technique used to protect personal data, and it is often used in conjunction with other data protection measures.
UK General Data Protection Regulation refers to the UK regulation that outlines… #
UK General Data Protection Regulation is a key concept in the field of data protection, and it is often required by data protection laws.
Vendor Management refers to the process of managing and overseeing the activitie… #
Vendor Management is a key concept in the field of data protection, and it is often required by data protection laws.
Withdrawal of Consent refers to the right of an individual to withdraw their con… #
Withdrawal of Consent is a key concept in the field of data protection, and it is often required by data protection laws.
Workforce Management refers to the process of managing and overseeing the activi… #
Workforce Management is a key concept in the field of data protection, and it is often required by data protection laws.
Data Localization refers to the requirement that personal data be stored… #
Data Localization is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Data Residency refers to the requirement that personal data be stored and… #
Data Residency is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Data Sovereignty refers to the concept that personal data is subject to t… #
Data Sovereignty is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Data Transfer Addendum refers to a document that outlines the terms and conditio… #
Data Transfer Addendum is a type of data transfer mechanism that allows organizations to transfer personal data while ensuring that the data is protected.
Intra #
Group Data Transfer refers to the transfer of personal data within a group of companies. Intra-Group Data Transfer is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Model Contractual Clauses refer to a set of contractual clauses that are used to… #
Model Contractual Clauses are a type of data transfer mechanism that allows organizations to transfer personal data while ensuring that the data is protected.
Onward Transfer refers to the transfer of personal data from one organiza… #
Onward Transfer is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Processor Binding Corporate Rules refer to a set of data protection rules… #
Processor Binding Corporate Rules are a type of data transfer mechanism that allows processors to process personal data while ensuring that the data is protected.
Restricted Transfer refers to the transfer of personal data from one orga… #
Restricted Transfer is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Service Provider refers to an organization that provides services to a controlle… #
Service Provider is a key concept in the field of data protection, and it is often required to comply with data protection laws and regulations.
Sub #
Processor refers to an organization that processes personal data on behalf of a processor. Sub-Processor is a key concept in the field of data protection, and it is often required to comply with data protection laws and regulations.
Supervisory Authority refers to an independent body that is responsible for enfo… #
Supervisory Authority is a key concept in the field of data protection, and it plays a crucial role in ensuring that data protection laws are enforced.
Third #
Party Auditor refers to an independent organization that audits an organization's data protection practices and procedures. Third-Party Auditor is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Transfer Mechanism refers to a method or procedure that is used to transfer pers… #
Transfer Mechanism is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Transferred Data refers to personal data that is transferred from one org… #
Transferred Data is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Vendor refers to an organization that provides goods or services to a controller… #
Vendor is a key concept in the field of data protection, and it is often required to comply with data protection laws and regulations.
Vendor Risk Management refers to the process of managing and overseeing the acti… #
Vendor Risk Management is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Workforce Data refers to personal data that is collected and processed by… #
Workforce Data is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Data Privacy refers to the protection of personal data from unauthorized… #
Data Privacy is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Officer Training refers to the training and education provided t… #
Data Protection Officer Training is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Policy refers to a document that outlines an organization's poli… #
Data Protection Policy is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Principles refers to the fundamental principles that underlie <b… #
Data Protection Principles is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Security refers to the measures taken to protect personal data from… #
Data Security is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Subject Access Request refers to a request made by an individual to access… #
Data Subject Access Request is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Transfer Agreement Template refers to a template document that outlines the… #
Data Transfer Agreement Template is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
GDPR Compliance refers to the process of ensuring that an organization is compli… #
GDPR Compliance is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Information Security refers to the measures taken to protect personal data</i… #
Information Security is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
International Data Transfers refers to the transfer of personal data from… #
International Data Transfers is a key concept in the field of data protection, and it is often subject to additional protections and safeguards.
Personal Data Breach refers to the unauthorized access, disclosure, or loss of p… #
Personal Data Breach is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Privacy by Design refers to the principle of designing systems and processes to… #
Privacy by Design is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Privacy Impact Assessment refers to the process of assessing the potential risks… #
Privacy Impact Assessment is a technique used to protect personal data, and it is often used in conjunction with other data protection measures.
Privacy Notice refers to a document that outlines an organization's policies and… #
Privacy Notice is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Processor Agreement refers to a contract between a controller and a processor th… #
Processor Agreement is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Pseudonymization Techniques refer to the methods and techniques used to transfor… #
Pseudonymization Techniques are a key concept in the field of data protection, and they are often used in conjunction with other data protection measures.
Security Measures refer to the measures taken to protect personal data fr… #
Security Measures is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Sub #
Processing Agreement refers to a contract between a processor and a sub-processor that outlines the terms and conditions for the processing of personal data. Sub-Processing Agreement is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Supervisory Authority Guidance refers to the guidance and advice provided by sup… #
Supervisory Authority Guidance is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Third #
Party Risk Management refers to the process of managing and overseeing the activities of third-party vendors who process personal data on behalf of an organization. Third-Party Risk Management is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Vendor Due Diligence refers to the process of evaluating and assessing the da… #
Vendor Due Diligence is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Workforce Training refers to the training and education provided to employees on… #
Workforce Training is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Loss Prevention refers to the measures taken to prevent the unauthorized ac… #
Data Loss Prevention is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection as a Service refers to the provision of data protection s… #
Data Protection as a Service is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Certification refers to the process of certifying that an organi… #
Data Protection Certification is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Framework refers to the overall structure and approach to dat… #
Data Protection Framework is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Governance refers to the overall management and oversight of an… #
Data Protection Governance is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Management refers to the process of managing and overseeing an o… #
Data Protection Management is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Officer Role refers to the role and responsibilities of a dat… #
Data Protection Officer Role is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Policy Template refers to a template document that outlines an o… #
Data Protection Policy Template is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Principles for AI refers to the principles and guidelines for pr… #
Data Protection Principles for AI is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Protection Training refers to the training and education provided to employ… #
Data Protection Training is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Quality refers to the accuracy, completeness, and relevance of personal … #
Data Quality is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Quality Management refers to the process of managing and overseeing the qua… #
Data Quality Management is a key concept in the field of data protection, and it is often required by data protection laws and regulations.
Data Retention refers to the period of time for which personal data is st… #
Data Retention is a key concept in the field of data protection, and it is often required by data protection laws and regulations.