Checklist for Transfers of personal data outside the European Economic Area

Introductory note:
The General Data Protection Regulation (GDPR) is a regime of personal data protection requirements adopted by the European Parliament which regulates “personal data”. While GDPR is EU law, it has unprecedented extra-territorial reach. If the GDPR applies to your organisation, you must ensure compliance with its key requirements, including the transfer of personal data outside the European Economic Area (EEA).

How to use this checklist:
This practical checklist will assist you in ensuring that your organisation complies with the GDPR requriements, if you are subject to those regulations and you transfer personal date outside the EEA.

Links to related content:

For further detailed guidance on overseas data transfers, see Overview - Dealing with Overseas Transfers.
For guidance on whether the GDPR applies to your organisation, see Overview - What is GDPR and when does it apply to Australian organisations?