Transfer Mechanisms. In the absence of an adequacy decision, Company Personal Data may only be transferred to a third county or an International Organisation outside the EEA where there are Appropriate Safeguards. Such transfer (and any onward transfer) shall: be pursuant to a written contract, including equivalent obligations on the Subprocessor in respect of Company Personal Data as apply to Vendor under this DPA; is effected by way of Appropriate Safeguards and, where practicable, the form of these shall be subject to Company’s prior written approval; otherwise complies with applicable data protection laws.
Transfer Mechanisms. Service Provider shall not transfer any Personal Data outside the EEA unless the prior written consent of Customer has been obtained and the following conditions are met: • Customer or Service Provider has provided appropriate safeguards in relation to the transfer as per Article 46 GDPR; • The data subject has enforceable rights and effective legal remedies; • Service Provider complies with its obligations under Applicable Data Protection Laws by providing an adequate level of protection to any Personal Data that is transferred; and; • Service Provider complies with reasonable instructions notified to it in advance by Customer with respect to the Processing of Personal Data.
Transfer Mechanisms. The parties agree that where transfer of Company Personal Information from Company to Seagate is a Restricted Transfer, it will be subject to the transfer mechanisms listed below:
Transfer Mechanisms. Service Provider shall not transfer any Personal Data outside the EEA unless the prior written consent of Customer has been obtained and the following conditions are met: o Customer or Service Provider has provided appropriate safeguards (such as binding corporate rules, the Model Clauses, the Privacy Shield, etc.) in relation to the transfer as per Article 46 GDPR; o The data subject has enforceable rights and effective legal remedies; o Service Provider complies with its obligations under Applicable Data Protection Laws by providing an adequate level of protection to any Personal Data that is transferred; and; o Service Provider complies with reasonable instructions notified to it in advance by Customer with respect to the Processing of Personal Data.
Transfer Mechanisms. 10.1 Subject to the additional terms in Annex 2 hereof, Qubit makes available the transfer mechanisms listed below which shall apply, in the order of precedence as set out in Section 11.2 hereof, to any transfers of Personal Data under this Addendum from the European Union, the European Economic Area and/or their member states and the United Kingdom to countries which do not ensure an adequate level of data protection within the meaning of Data Protection Laws and Regulations of the foregoing territories, to the extent such transfers are subject to such Data Protection Laws and Regulations:
1. Qubit Group’s EU-U.S. Privacy Shield Framework self-certification, subject to the additional terms in Section 1 of Annex 2;
2. The Standard Contractual Clauses set forth in Annex 3 to this Addendum, subject to the additional terms in Section 2 of Annex 2.
10.2 In the event that Services are covered by more than one transfer mechanism, the transfer of Personal Data will be subject to a single transfer mechanism in accordance with the following order of precedence: (1) Qubit’s EU-U.S. Privacy Shield Framework self-certification and, (2) the Standard Contractual Clauses.
Transfer Mechanisms. For any transfers by Client of Client Personal Data from the European Economic Area and its member states, United Kingdom and/or Switzerland (collectively, “Restricted Countries”) to MindWire in a country which does not ensure an adequate level of protection (within the meaning of and to
2.1. For clarity, for transfers from the United Kingdom and Switzerland, references in the SCCs shall be interpreted to include applicable terminology for those jurisdictions (e.g., ‘Member State’ shall be interpreted to mean ‘United Kingdom’ for transfers from the United Kingdom).
Transfer Mechanisms. Onward transfers to Sub-processors. The Parties acknowledge that in providing the Services, VTEX may need to transfer Personal Data to a Sub-processor located in a country outside the EEA that is not deemed to offer an adequate level of data protection as defined by the Data Protection Laws, and in each case, where such transfer would be prohibited by Data Protection Laws in the absence of the Standard Contractual Clauses or other appropriate safeguards, (“Restricted Transfer”). The Customer hereby authorises the VTEX to act as its agent to enter into Standard Contractual Clauses with such sub-Processors in the name of and on behalf of the Customer to facilitate the arrangements as set out in this paragraph. In such instance, the Customer shall be the data exporter and the Sub-processor(s) will be the data importer(s). Customer acknowledges that the Sub-processor may appoint sub-processors in accordance with Clause 11 of Exhibit C.
Transfer Mechanisms. With regard to any EEA Restricted Transfer from Customer to Billtrust within the scope of the Addendum, one of the following transfer mechanisms shall apply, in the following order of precedence:
a. a valid adequacy decision pursuant to the requirements under the GDPR that provides that the Third Country, a territory or one or more specified sectors within that Third Country, or the international organization in question to which Customer Personal Data is to be transferred ensures an adequate level of data protection;
b. Billtrust’s certification to any successor to the Privacy Shield Framework, including but not limited to the EU – U.S. Data Privacy Framework (only to the extent that such self-certification constitutes an “appropriate safeguard” pursuant to the GDPR, as the case may be), provided that the Services are covered by the self-certification, if applicable;
c. the Standard Contractual Clauses (insofar as their use constitutes an “appropriate safeguard”
d. under the GDPR, as the case may be); or
e. any other lawful basis, as laid down in the GDPR, as the case may be.
Transfer Mechanisms. (a) With regard to any EEA Restricted Transfer or Restricted Transfer of Swiss Data from Customer to Idera within the scope of the DPA, one of the following transfer mechanisms shall apply, in the following order of precedence:
i. a valid adequacy decision pursuant to the requirements under the EU GDPR that provides that the third country or the international organization in question to which Customer Personal Data is to be transferred ensures an adequate level of data protection or the inclusion of such third country or international organization in the list published by the Swiss Federal Data Protection and Information Commissioner of states that provide an adequate level of protection for Personal Data within the meaning of Swiss Data Protection laws;
ii. Idera’s certification to any successor to the Privacy Shield Framework (only to theextent that such self-certification constitutes an “appropriate safeguard” pursuant to the EU GDPR, as the case may be), provided that the Services are covered by the self-certification;
iii. the EU 2021 Standard Contractual Clauses (insofar as their use constitutes an “appropriate safeguard” under EEA Data Protection Laws or Swiss Data Protection Laws, as the case may be); or
iv. any other lawful basis, as laid down in EEA Data Protection Laws or Swiss Data Protection Laws, as the case may be.
Transfer Mechanisms. 10.1. In the absence of an adequacy decision, Customer Personal Data may only be transferred to a third country outside the EEA or to an international organisation where there are Appropriate Safeguards – e.g. pursuant to the Standard Contractual Clauses as issued by the relevant authorities, including equivalent obligations on the Subprocessor in respect of Customer Personal Data under Applicable Data Privacy Law.
