The Berlin Commissioner for Data Protection and Freedom of Information published guidance for international data transfers according to the Court of Justice of the European Union's "Schrems II" ruling. The state regulator outlined transfer requirements under the EU General Data Protection Regulation while explaining the current legal landscape around global transfers, with particular focus on transfers to the U.S. and the lack of legal bases for transfers. Additionally, the guidance detailed the data transfer audits it has carried out in the wake of the CJEU decision.
Berlin DPA offers cross-border data transfer guidance
Related stories
How proposed AI enforcement moratorium cuts into US state-level powers
Notes from the IAPP Canada: Building momentum to address youth privacy issues
Navigate 2025: Potential EU AI Act pause opens new questions on approach to global regulation
Notes from the Asia-Pacific region: Chinese regulators strengthen AI, data protection governance
Notes from the IAPP Europe: Data protection and AI in focus
