Showing results for 
Search instead for 
Did you mean: 
No ratings
Archer Employee
Archer Employee

The European Data Protection Board (EDPB) is an independent European body, which contributes to the consistent application of data protection rules throughout the European Union, and promotes cooperation between the EU’s data protection authorities. The EDPB is established by the General Data Protection Regulation (GDPR), and is based in Brussels.

The EU General Data Protection Regulation (GDPR) was adopted to serve a dual-purpose: facilitating the free flow of personal data within the European Union, while preserving the fundamental rights and freedoms of individuals, in particular their right to the protection of personal data. In its recent judgment C-311/18 (Schrems II) the Court of Justice of the European Union (CJEU) reminds us that the protection granted to personal data in the European Economic Area (EEA) must travel with the data wherever it goes. Transferring personal data to third countries cannot be a means to undermine or water down the protection it is afforded in the EEA. The Court also asserts this by clarifying that the level of protection in third countries does not need to be identical to that guaranteed within the EEA but essentially equivalent. The Court also upholds the validity of standard contractual clauses, as a transfer tool that may serve to ensure contractually an essentially equivalent level of protection for data transferred to third countries.

To help exporters (be they controllers or processors, private entities or public bodies, processing personal data within the scope of application of the GDPR) with the complex task of assessing third countries and identifying appropriate supplementary measures where needed, the European Data Protection Board (EDPB) has adopted the 01/2020 recommendations. These recommendations provide exporters with a series of six steps to follow, potential sources of information, and some examples of supplementary measures that could be put in place.


This content is available in English only.



Mappings for the European Data Protection Board (EDPB) Recommendations 01/2020 authoritative source content to the Archer Control Standard Library are available in the authoritative source content pack.


Content Source

The source of this content comes from the European Data Protection Board website.

Licensing Restrictions

The European Data Protection Board (EDPB) Recommendations 01/2020 authoritative source content is available with the use of the Archer Policy Program Management, Archer IT Policy Program Management, and/or Archer Authorization and Assessment use cases. No additional license is required.


For More Information

To learn more about the European Data Protection Board (EDPB) Recommendations 01/2020 Authoritative Source Content:

The European Data Protection Board (EDPB) Recommendations 01/2020 authoritative source content is provided through the Archer Exchange to help expand your Archer use cases. To learn more about the Archer Exchange, please visit the Archer Exchange on the RSA Link Community.

For Additional Support

To learn more about this content, please contact your Account Rep for additional details. For technical support questions, please open a support case.

Was this article helpful? Yes No
Version history
Last update:
‎2022-01-27 07:10 PM
Updated by: