EU-Politik & Recht
Data protection adequacy for non-EU countries
The European Commission has the authority to determine if countries outside the EU offer an adequate level of data protection under Article 45 of Regulation (EU) 2016/679 (GDPR). This power allows the Commission to facilitate the transfer of personal data from the EU to these third countries, ensuring that EU citizens' data remains protected to European standards. Such adequacy decisions are crucial for international data flows and trade, impacting businesses and individuals engaging with non-EU entities.
The EU continues to safeguard personal data when transferred outside the Union.