Pinterest · Pinterest Privacy Policy

International Data Transfers via Standard Contractual Clauses

Medium severity
Share 𝕏 Share in Share 🔒 PDF

What it is

Pinterest transfers your personal data from the EU, UK, and Switzerland to the United States using legal mechanisms including Standard Contractual Clauses and the EU-US Data Privacy Framework to comply with data transfer rules.

Consumer impact (what this means for users)

Your personal data collected in the EU, UK, or Switzerland is transferred to and processed in the United States, with legal protection provided by Standard Contractual Clauses and the EU-US Data Privacy Framework, though the adequacy of US surveillance law protections remains a contested legal question.

Cross-platform context

See how other platforms handle International Data Transfers via Standard Contractual Clauses and similar clauses.

Compare across platforms →
Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

International data transfers carry legal risk if transfer mechanisms are challenged or invalidated, and users should know their data leaves their jurisdiction and the legal protections that apply.

View original clause language
Pinterest, Inc. complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. When we transfer your personal data from the EEA, Switzerland, or the UK to countries which have not been found by the relevant authorities to provide an adequate level of protection, we rely on mechanisms such as the European Commission's Standard Contractual Clauses.

Institutional analysis (Compliance & legal intelligence)

REGULATORY FRAMEWORK: This provision implicates GDPR Chapter V (Arts. 44–49) on transfers to third countries, specifically Art. 46(2)(c) (SCCs) and the EU-US Data Privacy Framework (DPF) adequacy decision (Commission Implementing Decision 2023/1795). UK GDPR and the UK's International Data Transfer Agreement (IDTA) apply for UK transfers. Swiss FADP applies for Swiss transfers. The CJEU's Schrems II decision (Case C-311/18) established the legal framework for SCC-based transfers, including the requirement for transfer impact assessments (TIAs). The Irish DPC and UK ICO are primary enforcement authorities.

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

  • State AG
    EU/UK users may lodge complaints with their national data protection authority regarding the adequacy of international data transfer safeguards; US State AGs are relevant for domestic enforcement.
    File a complaint →

Provision details

Document information
Document
Pinterest Privacy Policy
Entity
Pinterest
Document last updated
April 29, 2026
Tracking information
First tracked
April 27, 2026
Last verified
April 27, 2026
Record ID
CA-P-003365
Document ID
CA-D-00098
Evidence Provenance
Source URL
https://policy.pinterest.com/en/privacy-policy
Wayback Machine
View archived versions →
SHA-256
c1bbcbcc2602f2e5ebdf8f851d42a6a1a8fe73899b6fe40268e16ef95ffa88d1
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: Pinterest | Document: Pinterest Privacy Policy | Record: CA-P-003365
Captured: 2026-04-27 12:16:26 UTC | SHA-256: c1bbcbcc2602f2e5…
URL: https://conductatlas.com/platform/pinterest/pinterest-privacy-policy/international-data-transfers-via-standard-contractual-clauses/
Accessed: May 2, 2026
Classification
Severity
Medium
Categories
Unknown

Other provisions in this document