AI21 Labs · AI21 Labs Privacy Policy

Cross-Border Data Transfers

Medium severity
Share 𝕏 Share in Share 🔒 PDF

What it is

Your personal data may be transferred from the EU or other countries to Israel and the United States, where AI21 operates its main systems. AI21 says it uses standard contractual clauses (SCCs) to make these transfers legal under GDPR.

Consumer impact (what this means for users)

If you are in the EU, your personal data will be transferred to Israel and the US for processing — AI21 relies on SCCs for these transfers, but you have limited practical ability to prevent this if you use their services.

Cross-platform context

See how other platforms handle Cross-Border Data Transfers and similar clauses.

Compare across platforms →
Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

Data transferred to the United States faces ongoing legal uncertainty following the Schrems II ruling, and while Israel has EU adequacy status, US transfers require SCCs supplemented by Transfer Impact Assessments to be fully compliant.

View original clause language
AI21 Labs is headquartered in Israel and has offices in the United States. When you use our Services, your personal information may be transferred to and processed in countries outside of your country of residence, including Israel and the United States. We rely on appropriate safeguards for such transfers, including standard contractual clauses approved by the European Commission.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: GDPR Chapter V (Arts. 44-49) governs cross-border data transfers and requires an adequacy decision, SCCs, or other appropriate safeguards. Israel holds a European Commission adequacy decision (renewed consideration ongoing post-2023). US transfers require SCCs plus a Transfer Impact Assessment (TIA) per EDPB guidance following Schrems II (C-311/18). UK GDPR and ICO's International Data Transfer Agreement (IDTA) govern UK-origin transfers separately. Israeli transfers to the US are subject to Israeli PPA requirements. (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

  • FTC
    The FTC enforces against US companies that fail to adhere to stated cross-border data transfer commitments and has authority over Privacy Shield successor frameworks and deceptive transfer practices.
    File a complaint →

Provision details

Document information
Document
AI21 Labs Privacy Policy
Entity
AI21 Labs
Document last updated
April 29, 2026
Tracking information
First tracked
April 30, 2026
Last verified
April 30, 2026
Record ID
CA-P-004116
Document ID
CA-D-00460
Evidence Provenance
Source URL
https://www.ai21.com/privacy-policy
Wayback Machine
View archived versions →
SHA-256
4abc7ff0d7779bee955894a99670d17aadf5332ce2786437f3a3b85a2497adc3
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: AI21 Labs | Document: AI21 Labs Privacy Policy | Record: CA-P-004116
Captured: 2026-04-30 06:15:21 UTC | SHA-256: 4abc7ff0d7779bee…
URL: https://conductatlas.com/platform/ai21-labs/ai21-labs-privacy-policy/cross-border-data-transfers/
Accessed: May 2, 2026
Classification
Severity
Medium
Categories
Unknown

Other provisions in this document