When a vendor or sub-processor is located outside the EU/EEA, these settings help you document your GDPR compliance for international data transfers.
Accessing Third Country Settings- Navigate to the legal entity you want to configure.
- Click the edit icon.
- Select Third country settings.
Configuration Options
Transfer Impact Assessment (TIA)
Mark whether a Transfer Impact Assessment is necessary for this legal entity. This flags the entity for additional review and documentation.
Transfer Basis Requirements
Specify whether a transfer basis is required and select the appropriate protection level. Options include:
- SCC — GDPR Article 46(2)(c) — Standard Contractual Clauses
- Other applicable transfer mechanisms under GDPR
Automatic Application
When you set a specific transfer basis on a legal entity, it is automatically applied to all existing transfers where that entity acts as a data processor or sub-processor. This saves you from updating each transfer individually.
Custom Overviews
If you have the Custom Lists add-on, you can generate reports showing all legal entities and their associated transfer bases. This provides a comprehensive compliance overview for audits and reporting.