Third Party and cross border transfer data

2. In cross border transfer data , if the adequacy is not fulfilled , what are the penalties?

Answers:

1. There are actually the same. In the context of the EU GDPR both are entities that are receiving personal data. Depending of the purpose of processing ad the business context the Recipient or Third Party can be a data processor, a joint controller or a controller in its own rights. You can find out more about controllers and processors from our article “EU GDPR controller vs. processor – What are the differences?” – https://advisera.com/eugdpracademy/knowledgebase/eu-gdpr-controller-vs-processor-what-are-the-differences/

2. Fail to comply with the requirements regarding cross border transfers of personal data can be sanctioned with fines up to 20 000 000 EUR, or in the case of an undertaking, up to 4 % of the total worldwide annual turnover of the preceding financial year, whichever is higher. To learn more about sanctions under the EU see this free online training GDP R Foundations Course: https://advisera.com/training/eu-gdpr-foundations-course// as well as our webinar “ What to expect from Data Protection Authorities under GDPR” - https://advisera.com/eugdpracademy/webinar/what-to-expect-from-data-protection-authorities-under-gdpr-free-webinar-on-demand/