At Blu Brain, we value the trust our customers place in us to protect their personal information. This International Data Transfer Policy outlines how we handle the transfer of personal data across international borders, ensuring compliance with global data protection regulations.
Scope:
This policy applies to all personal data transferred from one country to another, where such transfers are subject to international data protection laws, including but not limited to the General Data Protection Regulation (GDPR).
1. Principles of Data Transfer:
Compliance with Laws: All data transfers comply with the legal requirements of the originating and receiving countries.
Transparency: We will inform our users about the international transfer of their data, including the reasons and security measures in place.
2. Data Transfer Mechanisms:
Adequacy Decisions: Where possible, we transfer data to countries that have been deemed to provide an adequate level of data protection by relevant authorities.
Standard Contractual Clauses (SCCs): For transfers to countries without adequacy decisions, we use SCCs as approved by the European Commission or other relevant authorities.
Binding Corporate Rules (BCRs): For internal transfers within our multinational organisation, we may use BCRs that are legally binding and enforce data protection policies.
3. Security Measures:
Data Encryption: All transferred data is encrypted both in transit and at rest.
Regular Audits: We conduct regular audits of our data transfer practices to ensure ongoing compliance with international data protection laws.
4. Data Subject Rights:
Right to Information: Data subjects have the right to be informed about the transfer of their data internationally.
Right to Access and Rectification: Users can access and, if necessary, rectify their personal data that is transferred internationally.
5. Responsibilities:
Data Protection Officer (DPO): Our DPO oversees and ensures compliance with this policy and international data protection laws.
Training: All staff involved in data transfers receive regular training on data protection and compliance.
6. Breach Notification:
In case of a data breach affecting internationally transferred data, we will let affected individuals and relevant authorities know as required by law.
7. Policy Review and Modification:
This policy is reviewed regularly and updated to reflect changes in international data protection laws and best practices.
8. Contact Information:
For any inquiries regarding our international data transfer practices, please get in touch with our DPO or designated representative.
Effective Date: 23/12/2023
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article