General Principles for International Data Transfers

¹Flows of personal data to and from countries outside the Union and international organisations are necessary for the expansion of international trade and international cooperation. ²The increase in such flows has raised new challenges and concerns with regard to the protection of personal data. ³However, when personal data are transferred from the Union to controllers, processors or other recipients in third countries or to international organisations, the level of protection of natural persons ensured in the Union by this Regulation should not be undermined, including in cases of onward transfers of personal data from the third country or international organisation to controllers, processors in the same or another third country or international organisation. ⁴In any event, transfers to third countries and international organisations may only be carried out in full compliance with this Regulation. ⁵A transfer could take place only if, subject to the other provisions of this Regulation, the conditions laid down in the provisions of this Regulation relating to the transfer of personal data to third countries or international organisations are complied with by the controller or processor.