11.1 The subcontractor may not transfer or authorize the transfer of data to countries outside the EU and/or the European Economic Area (EEA) without the company`s prior written consent. When personal data processed under this agreement is transferred from a country within the European Economic Area to a country outside the European Economic Area, the parties ensure that personal data is adequately protected. To do so, contracting parties, unless otherwise agreed, rely on standard contractual clauses approved by the EU for the transfer of personal data. This applies in the event of a medical emergency where the transfer is necessary to provide the necessary medical care. The imminent threat of serious harm to individuals must outweigh all data protection issues. (h) make available to the persons concerned, upon request, a copy of the clauses, with the exception of Appendix 2, as well as a summary description of the security measures, as well as a copy of a contract for sub-treatment services to be made in accordance with the clauses, unless the clauses or contract contain commercial information, in which case they may withdraw this commercial information; Before you make a limited transfer, you should consider achieving your goals without sending personal data. CONSIDERING that the data exporter and data importer have entered into or entered into a specific master service contract and a specific data protection and data security additive (together the “agreement”). Each company is a separate responsible owner because it processes personal data for its own purposes and makes its own decisions. (c) that the data importer provides sufficient safeguards for the technical and organizational security measures covered by Appendix 2 of this treaty; This does not apply to registers managed by private companies, such as credit reference databases.B. The rules for transfers outside the EEA will be similar to those in the area of the RGPD. Although the UK will make its own adequacy decisions at the end of the transition period, the UK Government has confirmed that it intends to recognise, as far as possible, existing EU decisions, EU CCS and BRCs. You can make a limited transfer if you and the recipient have entered into a contract containing standard data protection clauses adopted by the Commission.