Loom
· Loom Privacy Policy
If you are based in the EU or UK, your Loom data may be transferred to and stored in the United States, and the legal adequacy of that transfer mechanism affects the protections your data receives.
International data transfers mean your personal data may be subject to the laws and government access regimes of countries other than your own, which is particularly significant for EU users whose data may be transferred to the United States or other countries with different privacy frameworks.
Cross-border data transfers from the EU/EEA to the United States require an approved transfer mechanism under GDPR Chapter V. The policy does not specify in detail which transfer mechanisms are relied upon, which warrants verification by compliance teams evaluating EU data flows.
This provision establishes the legal basis for cross-border data transfers from the EU/EEA, UK, and Switzerland to the US, which requires ongoing adequacy and Schrems II compliance assessment. Organizations subject to GDPR must confirm that Amplitude's SCCs are current, include required supplementary measures where applicable, and cover all relevant data flows.
The policy discloses that personal data may be transferred internationally and that NVIDIA relies on Standard Contractual Clauses or equivalent mechanisms; the adequacy of these mechanisms and NVIDIA's implementation of supplementary safeguards is relevant for EU/EEA and UK users.
Transferring personal data from the EU to the US requires specific legal mechanisms under GDPR, and users should understand their data may be processed under US law rather than their home country's privacy framework.
Glean
· Glean Privacy Policy
Cross-border data transfers are a key GDPR compliance obligation. If the transfer mechanisms are not properly implemented, data flows to the US could be challenged by regulators or privacy advocates.
Cross-border data transfers from the EU or UK to countries without an adequacy decision require specific legal safeguards under GDPR and UK GDPR, and the policy's general disclosure does not specify which transfer mechanisms are used.
eBay
· eBay Privacy Notice
Cross-border data transfers mean your personal information may leave your home country and be processed under different legal standards, which is particularly significant for EU users given GDPR's strict transfer restrictions.
For users in the EU, UK, or other jurisdictions with strong data protection laws, international data transfers carry legal significance and Microsoft must rely on approved transfer mechanisms such as Standard Contractual Clauses to make such transfers lawful.
Hinge
· Hinge Privacy Policy
Cross-border transfers of personal data from the EEA to the United States require specific legal safeguards under GDPR, and users in the EEA should understand that their data is ultimately processed within a US-headquartered corporate group.
Users in the EU, UK, and Switzerland have data transferred to jurisdictions without equivalent privacy protections, and the adequacy of the standard contractual clauses mechanism depends on the transfer impact assessments Ideogram has conducted, which are not described in the policy.
The policy states that personal data from EU and UK users may be transferred internationally and that Standard Contractual Clauses are the stated mechanism, which matters because the adequacy of these mechanisms for transfers to certain jurisdictions may require ongoing assessment under post-Schrems II guidance.
Bumble
· Bumble Privacy Policy
International data transfers mean your personal information may be processed under legal frameworks that provide different or potentially lower levels of protection than your home country's laws.
EU and UK users whose data is transferred to the United States or other countries must be protected by an appropriate transfer mechanism under GDPR; the policy does not specify which mechanisms Jasper relies upon in the available text.
DeepL
· DeepL Privacy Policy
This provision discloses that EEA user data may be routed to non-EEA processors, with Standard Contractual Clauses cited as the primary safeguard mechanism. Organizations subject to strict data residency requirements or sector-specific cross-border transfer restrictions should evaluate whether this transfer framework satisfies their obligations.
Transferring personal data out of the EEA to the United States means your data is subject to US law, including potential government access requests, and the adequacy of the transfer mechanism may be subject to legal challenge.
Auth0
· Auth0 Privacy Policy
Cross-border data transfers from the EU and UK to the US remain a significant regulatory concern following the Schrems II ruling, and the adequacy and current status of Okta's SCCs and any supplementary measures are important for both individual data subjects and enterprise customers.
International data transfers are a key compliance area under GDPR; the sufficiency of transfer mechanisms depends on whether Thomson Reuters has conducted Transfer Impact Assessments, particularly for transfers to the United States.
Cohere
· Cohere Privacy Policy
This provision is particularly significant for EU and UK users because transfers of personal data from the EEA and UK to the United States require a lawful transfer mechanism under GDPR and UK GDPR, and the adequacy or sufficiency of those mechanisms is subject to ongoing regulatory scrutiny.
Adyen
· Adyen Privacy Policy
Cross-border transfers expose your data to legal systems with potentially lower privacy protections than the EU or UK, and the adequacy of Standard Contractual Clauses as a safeguard depends on ongoing regulatory and judicial developments.
Brex
· Brex Privacy Policy
This provision engages GDPR Chapter V cross-border transfer requirements for EU and UK users, requiring that Standard Contractual Clauses be accompanied by a Transfer Impact Assessment where transfers are made to countries without an adequacy decision, including the United States.
EU, UK, and other non-U.S. users should be aware that their data is transferred to a jurisdiction with a different legal framework, and the adequacy of transfer mechanisms is a material compliance consideration.
Fly.io
· Fly.io Privacy Policy
If you are in the EU, UK, or another jurisdiction with strong data protection laws, transfers to the US require specific legal safeguards that must be in place for the transfer to be lawful.
Cross-border data transfers from the EU and UK to the U.S. are subject to specific legal requirements under GDPR, and users should be aware that their data leaves their home jurisdiction, even if transfer safeguards are in place.
Stripe
· Stripe Privacy Policy
International data transfers are subject to legal requirements in the EU, UK, and other jurisdictions, and the adequacy of Stripe's transfer mechanisms directly affects whether EU and UK user data is protected to required standards when processed outside those regions.
For EU and UK users, the legal adequacy of data transfers to the US is an ongoing regulatory concern following the Schrems II decision, and the effectiveness of Standard Contractual Clauses depends on accompanying transfer impact assessments.
Webull
· Webull Privacy Policy
For users outside the United States, particularly in the EU and UK, this means your personal and financial data may be subject to U.S. legal process and privacy standards that may differ from those that apply in your jurisdiction.
EU and UK users are entitled to have their data protected to GDPR standards even when transferred abroad, and this clause creates an obligation on Peloton to implement legally adequate transfer mechanisms such as Standard Contractual Clauses.
Grindr
· Grindr Privacy Policy
For EU and UK users, transferring sensitive personal data to the US without adequate transfer mechanisms can violate GDPR and create legal exposure for Grindr and reduced rights protections for users.