International Data Transfers
The ability of organisations to transfer personal data overseas lawfully is critical to a country's social and economic success. From ecommerce and banking to health care and social media, all sectors rely on the free flow of personal data.
To ensure such transfers are GDPR compliant, the fundamental rights and freedoms of data subjects must be safeguarded through the use of an appropriate transfer mechanism. There is still much confusion about this topic, especially following the judgement of the European Court of Justice in “Schrems II†and the issuing of new standard contractual clauses by the UK and the EU.
This practical workshop will guide you through the transfer mechanisms set out in part V of GDPR and enable you to decide the best option for your transfers. You will learn how to complete the different transfer documents, including the UK International Data Transfer Agreement, and how to undertake a Transfer Impact Assessment. We will also examine the recently announced agreement between the US and EU which will replace the Privacy Shield.
By the end of this workshop you will be able to: recognise a restricted transfer under the UK GDPR, implement the requirements of the various Art 46 transfer mechanisms, select the most appropriate transfer mechanism for your organisation, conduct a Transfer Impact Assessment and execute the different model standard contractual clauses issued by the UK and the EU.
Key Topics
- Identifying a Restricted Transfer
- Common transfer scenarios e.g. cloud, outsourcing
- Differences between transfers under EU GDPR and UK GDPR transfer regimes
- Transfer mechanisms
- Transfer Impact Assessments
- Standard contractual clauses
- Binding Corporate Rules
- Public sector transfers
- Practical implications of the Schrems II case
- Model Contractual Clauses
- How to use the new UK IDTA and Addendum
- EU-US data transfer arrangements
Dates & Cost
Online
£449 plus VAT
Classroom
£499 plus VAT
Timings: 10am to 4pm
Course tutors
All our associates are experienced information governance professionals who have been training and advising in this field for many years.

What our clients say about us
I would highly recommend the GDPR Practitioner Course. The Tutor was extremely knowledgeable and gave plenty of chance for group conversation or individual questions. A great course for anyone wanting to expand their knowledge of GDPR and understand putting the principles into practise.
SL, BCH
I would highly recommend the GDPR Practitioner Course. The Tutor was extremely knowledgeable and gave plenty of chance for group conversation or individual questions. A great course for anyone wanting to expand their knowledge of GDPR and understand putting the principles into practise.
SL, BCH
I learned so much! The course was just the right balance of theory and practical, and was very well delivered.
CB, CHAS
The course was very useful as an IG Officer. The trainer was knowledgeable and explained some complex aspects of the legislation using interesting examples and real life scenarios. As a refresher, even with lots of work experience behind me, it was very useful to undertake the Practitioner course. The course materials and handbook are invaluable and I know I will re-use them in conjunction with my usual resources.
NC, Lincolnshire County Council
A very practical and all-encompassing coverage of the UK GDPR provided over 4 days. Although 4 days is not enough time to cover this whole subject in depth, there was just enough covered with further resources and links provided within the sessions to cover all aspects of the GDPR to a level at which I now feel a lot more confident in my role. Thank you, Kirsty!
SW, Norwich University of the Arts
