The International Data Transfer Addendum is essential for organizations transferring personal data from Belgium/EU to countries outside the European Economic Area (EEA). It is required when the main service, processing, or other commercial agreement involves international data transfers that must comply with Chapter V of the GDPR and Belgian data protection law. This addendum supplements the main agreement by incorporating necessary safeguards, including Standard Contractual Clauses, transfer impact assessments, and specific Belgian legal requirements. It should be used whenever personal data will be transferred internationally, whether in a controller-to-controller, controller-to-processor, or processor-to-sub-processor relationship. The document is particularly crucial following the Schrems II decision, which requires enhanced assessment of data protection in recipient countries.
Your data doesn't train Genie's AI
You keep IP ownership of your information
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
OR
Let Ƶ's market-leading legal AI identify missing terms, unusual language, compliance issues and more - in just seconds.
1. Parties: Identification of the data exporter and data importer, including their roles (controller/processor)
2. Background: Context of the addendum, relationship to main agreement, and purpose of the data transfers
3. Definitions: Key terms used in the addendum, incorporating GDPR definitions and additional specific terms
4. Scope and Applicability: Description of the transfers covered and relationship to main agreement
5. Transfer Mechanisms: Legal basis for transfers and applicable safeguards
6. Obligations of the Data Exporter: Specific responsibilities of the party sending the data
7. Obligations of the Data Importer: Specific responsibilities of the party receiving the data
8. Technical and Organizational Measures: Security measures for protecting transferred data
9. Sub-processing: Rules and restrictions for engaging sub-processors
10. Data Subject Rights: Mechanisms for handling data subject requests and ensuring their rights
11. Breach Notification: Procedures for reporting and handling data breaches
12. Audit Rights: Provisions for monitoring and verifying compliance
13. Duration and Termination: Term of the addendum and termination provisions
14. Governing Law and Jurisdiction: Confirmation of Belgian law application and jurisdiction
1. Local Representative: Required when either party needs an EU/Belgian representative under GDPR Article 27
2. Special Categories of Data: Include when sensitive data or criminal data is being transferred
3. Transfer Impact Assessment Procedures: Detailed when transfers are to non-adequate countries requiring specific assessments
4. Data Return/Deletion: Specific provisions for data handling upon termination, if different from main agreement
5. Supplementary Security Measures: Additional security requirements for high-risk transfers or sensitive data
6. BCR Integration: Required when linking to Binding Corporate Rules as transfer mechanism
1. Schedule 1: Description of Transfer: Detailed information about the transfer including categories of data, subjects, purposes
2. Schedule 2: Technical and Organizational Measures: Detailed security measures implemented by parties
3. Schedule 3: Sub-processors: List of approved sub-processors and process for adding new ones
4. Schedule 4: Transfer Impact Assessment: Documentation of transfer impact assessment for non-adequate countries
5. Appendix A: Contact Points: Key contacts for data protection matters and breach notification
6. Appendix B: SCCs Modifications: Any approved modifications to Standard Contractual Clauses
7. Appendix C: Supplementary Measures: Additional technical, organizational, and contractual measures for specific transfers
Relevant legal definitions
Clauses
Relevant Industries
Technology
Healthcare
Financial Services
Manufacturing
Retail
Professional Services
Telecommunications
Insurance
Education
Pharmaceuticals
E-commerce
Logistics
Consulting
Research and Development
Cloud Services
Relevant Teams
Legal
Compliance
Information Security
Privacy
Information Technology
Risk Management
Data Protection
Information Governance
International Operations
Contract Management
Corporate Affairs
Regulatory Affairs
Relevant Roles
Data Protection Officer
Privacy Counsel
Legal Director
Chief Legal Officer
Compliance Manager
Information Security Officer
Chief Information Security Officer
Privacy Manager
Data Protection Manager
International Business Development Manager
Contract Manager
IT Director
Chief Technology Officer
Risk Manager
Chief Compliance Officer
Information Governance Manager
Find the exact document you need
GDPR Intercompany Agreement
A Belgian law-governed GDPR Intercompany Agreement regulating data processing and transfers between group entities in compliance with EU and Belgian data protection requirements.
Download
International Data Transfer Addendum
Belgian law-governed International Data Transfer Addendum ensuring GDPR compliance for cross-border personal data transfers.
Download
Intra Group Data Processing Agreement
Belgian law-governed data processing agreement for intra-group data transfers and processing activities, ensuring GDPR compliance within corporate groups.
Download
Data Processing Agreement Addendum
A Belgian law-governed addendum that establishes GDPR-compliant terms for personal data processing between a controller and processor.
Download
Data Processing Contract
A Belgian law-governed agreement defining terms for processing personal data under GDPR and national data protection requirements.
Download
Personal Data Agreement
Belgian law-governed Personal Data Agreement establishing data processing terms and GDPR compliance requirements between parties.
Download
DPA Legal Agreement
Belgian law-governed Data Processing Agreement establishing GDPR-compliant terms for personal data processing between controller and processor.
Download
Data Processing Addendum
A Belgian law-governed agreement establishing terms for personal data processing between controllers and processors, ensuring compliance with GDPR and Belgian data protection requirements.
Download
Controller To Controller Agreement GDPR
A Belgian law-governed agreement establishing GDPR-compliant data sharing arrangements between independent data controllers.
Download
International Data Protection Agreement
Belgian law-governed agreement for international personal data processing, ensuring GDPR and local law compliance.
Download
Data Management Agreement
A Belgian law-governed agreement establishing data management and processing requirements between parties, ensuring compliance with local and EU data protection regulations.
Download
Commissioned Data Processing Agreement
Belgian law-governed Data Processing Agreement establishing controller-processor relationships in compliance with GDPR and local data protection requirements.
Download
Intercompany Data Processing Agreement
Belgian law-governed agreement regulating personal data processing between affiliated companies within the same corporate group, ensuring GDPR compliance.
Download
Personal Data Transfer Agreement
A Belgian law-governed agreement establishing terms and conditions for transferring personal data between organizations, ensuring GDPR and local law compliance.
Download
Controller Processor Agreement
A Belgian law-governed agreement establishing terms for personal data processing between a controller and processor, complying with GDPR and Belgian Data Protection Act requirements.
Download
Order Processing Agreement
A Belgian law-governed agreement defining terms for personal data processing between controller and processor, ensuring GDPR and local law compliance.
Download
Sub Processing Agreement
A Belgian law-governed agreement establishing terms for sub-processor engagement in data processing activities, ensuring GDPR and local law compliance.
Download
Data Protection Addendum
Belgian law-governed data protection agreement establishing GDPR-compliant processing terms between controller and processor.
Download
ұԾ’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; ұԾ’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)