Logo
StreamLex Home
Logo
StreamLex Home
Laws
Laws
Recitals
Recitals
News
Trackers
Resources
Contact
About Us
News
Recitals
Trackers
Resources
Newsletter
Terms of Use
Privacy Notice
LinkedIn
undefined | StreamLex

EDPB Recommendations on supplementary measures

Recommendations 01/2020 on measures that supplement transfer tools to ensure compliance with the EU level of protection of personal data

The recommendations focus on the requirements for transferring personal data to third countries under GDPR, in response to the CJEU's Schrems II judgment. The document includes six steps for data exporters: mapping data transfers, verifying transfer mechanisms, assessing third-country laws, identifying supplementary measures, fulfilling procedural steps, and ongoing re-evaluation of data protection levels. The document includes an annex with examples of effective and non-effective supplementary measures (technical, organizational and contractual) applied to specific scenarios.

Metadata

Author: European Data Protection Board

Status: Adopted / Published

Adoption date: 2021-06-18

Last updated: 08 Aug 2025

Category: Guidance

Subcategory: Official recommendations

Relevant laws and articles:

GDPR
46
Source URL:https://edpb.europa.eu/system/files/2021-06/edpb_recommendations_202001vo.2.0_supplementarymeasurestransferstools_en.pdf

© 2026 StreamLex

NewsletterAbout UsTerms of UsePrivacy NoticeManage Cookies

© 2026 StreamLex