On 18 November 2021, the European Data Protection Board (“EDPB”) adopted new guidelines which:
- Set out a three part criteria for identifying whether an action will be considered an international transfer of personal data; and
- Clarify that restrictions on international data transfers do apply to transfers to entities located in a third country, but which