Adequacy Decision
Where a country has been granted adequate by the European Commission, this means they have been found to offer the same level of safeguarding as the UK and therefore are safe countries to transfer information to and no extra contractual obligations are required in order to transfer your information.
A list of countries with adequacy is linked here.
Standard contractual clauses
These are a set of standard clauses which have been recognised by the European Commission and the Information Commissioner’s Office as providing adequate protection to personal information transferred outside the EU or UK
When we include these clauses in a contract with one of the companies we work with, it means that if they transfer your information outside the EU or UK they must make sure that your information is just as safe as it is in the EU or UK.
As part of this, a transfer impact assessment is also completed to identify any risks with the information sharing. This enables us to put extra protections in place before we decide whether to transfer your information.
International Data Transfer Agreement (IDTA)
This is a transfer mechanism that has been created by the Information Commissioners Office which provides sufficient protection to personal information transferred outside the UK to restricted countries outside the EU.
Binding corporate rules
These are a way for large groups of companies which are based in lots of countries around the world to transfer personal information to companies in their group in a way that complies with the EU data protection rules. The binding corporate rules must be approved by the European data protection authorities before the group of companies can adopt them.
When one of the companies we work with uses binding corporate rules, it means that if they transfer your information outside the EU or UK they have procedures in place to make sure that your information is handled in a way that makes sure that your information is just as safe as it is in the EU or UK.
To view a copy of the standard contractual clauses please visit https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en. For binding corporate rules, please contact the Data Protection Officer using the contact details provided above.
Unfortunately sending information via the internet is not completely secure. Although we do our best to protect your information, we cannot guarantee the security of any information you transmit to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to prevent unauthorised access.
Our site may, from time to time, contain links to and from the websites of third parties. If you follow a link to any of these websites, please note that these websites have their own privacy notices and cookie notices and we do not accept any responsibility or liability for those notices or your use of those websites.