The European Commission has adopted two new sets of standard contractual clauses, for use between controllers and processors and for the transfer of personal data to non-EEA countries. These reflect new requirements under the General Data Protection Regulation (GDPR) and take into account issues raised by the judgment of the ECJ in Schrems II. 

The new standard contractual clauses also take into account the joint opinion of the European Data Protection Board and the European Data Protection Supervisor, feedback from stakeholders during a broad public consultation and the opinion of Member States' representatives.

Please contact us for help with adopting the new clauses in your agreements.