Users in the EU, UK, and other jurisdictions with data export restrictions need to know that their data may be processed in countries with different privacy standards, and that legal safeguards are promised but not specifically named.
Cross-border transfers of personal data to countries without equivalent data protection standards create potential risk that your data will be handled under a less protective legal framework than where you live.
These certifications are the legal basis on which D&B transfers personal data from the EU, UK, and Switzerland to the United States; if a certification lapses or is challenged, the lawfulness of those transfers could be called into question.
Microsoft
· Microsoft Privacy Statement (Legacy)
This provision establishes that personal data of EU, UK, and Swiss users may be transferred internationally and describes the legal mechanisms Microsoft asserts as the basis for those transfers, which is material for GDPR compliance and regulatory scrutiny.
Your data may be stored and processed in countries with different privacy laws than your own, and the legal protections Dropbox relies on for these transfers have faced regulatory scrutiny.
Twilio
· Twilio Privacy Notice
Cross-border data transfers from the EEA to the United States require valid transfer mechanisms under GDPR, and the adequacy of these mechanisms has been subject to legal challenge, making this provision relevant to EEA-based individuals and organizations evaluating Twilio as a data processor.
For EU and UK users, data transferred to the US is subject to US surveillance laws and the adequacy of Standard Contractual Clauses as a safeguard depends on Coinbase conducting and maintaining transfer impact assessments documenting risks and mitigations.
Loom
· Loom Privacy Policy
If you are based in the EU or UK, your Loom data may be transferred to and stored in the United States, and the legal adequacy of that transfer mechanism affects the protections your data receives.
Fiverr
· Fiverr Privacy Policy
Data transferred outside the EU may receive weaker legal protections, and users should understand that their data may be subject to access by US authorities under laws like the CLOUD Act.
GitHub
· GitHub Privacy Statement
Data leaving the EU or UK for the US is subject to different legal protections, and the validity of the transfer mechanisms GitHub uses may affect your privacy rights in practice.
Uber
· Uber Privacy Notice
Cross-border transfers of personal data are subject to strict requirements under GDPR, UK GDPR, and equivalent frameworks; the adequacy of Uber's stated transfer mechanisms and the actual protections available in destination countries may vary and is subject to ongoing regulatory scrutiny.
International data transfers are a key area of GDPR enforcement and EU users should be aware that their data may be processed in countries with different privacy standards, though Synthesia asserts it uses approved transfer mechanisms.
Lime
· Lime Privacy Policy
For EU, UK, and other international users, this means their personal data including location history may be transferred to a jurisdiction with a different privacy legal framework, and the adequacy of the transfer mechanisms protecting that data is not detailed in the notice.
International data transfers are a key compliance area under GDPR; the sufficiency of transfer mechanisms depends on whether Thomson Reuters has conducted Transfer Impact Assessments, particularly for transfers to the United States.
Visa
· Visa Privacy Notice
International data transfers create risk that your financial data may be subject to foreign government access or weaker legal protections than those in your home country.
OpenAI
· OpenAI Privacy Policy
Data transferred to the US is subject to US law, including potential government access under national security frameworks, which may offer different protections than those in users' home countries.
Lyft
· Lyft Privacy Policy
Once your data is transferred internationally, it may be subject to foreign government access and weaker privacy protections than those available in the US.
International transfers of sensitive mental health data to the US mean your information may be subject to US government access or different privacy standards than your home jurisdiction provides.
Replit
· Replit Privacy Policy
For EU and UK users, international data transfers require specific legal mechanisms under GDPR and UK GDPR. The adequacy of Replit's transfer safeguards, such as Standard Contractual Clauses, directly affects the legal basis for processing EU user data in the US.
Transferring personal data from the EU to the US requires specific legal mechanisms under GDPR, and users should understand their data may be processed under US law rather than their home country's privacy framework.
Grindr
· Grindr Privacy Policy
For EU and UK users, transferring sensitive personal data to the US without adequate transfer mechanisms can violate GDPR and create legal exposure for Grindr and reduced rights protections for users.
Waze
· Waze Privacy Policy
If you are in the EU or UK, your data may be transferred to jurisdictions with different — potentially lower — levels of legal protection for your personal information.
Users in the EU, UK, and Switzerland have data transferred to jurisdictions without equivalent privacy protections, and the adequacy of the standard contractual clauses mechanism depends on the transfer impact assessments Ideogram has conducted, which are not described in the policy.
eBay
· eBay Privacy Notice
Cross-border data transfers mean your personal information may leave your home country and be processed under different legal standards, which is particularly significant for EU users given GDPR's strict transfer restrictions.
Microsoft
· Microsoft Privacy Statement (Legacy)
Cross-border data transfers mean your personal data may be subject to surveillance laws and government access requests in countries with different privacy standards than your own, particularly relevant for EU users whose data is transferred to the US.
Adobe
· Adobe Privacy Policy
Users outside the U.S., particularly in the EU, have legal protections governing international data transfers, and the adequacy of those protections depends on the legal mechanisms Adobe uses, such as Standard Contractual Clauses or the EU-U.S. Data Privacy Framework.
Stripe
· Stripe Privacy Policy
International data transfers are subject to legal requirements in the EU, UK, and other jurisdictions, and the adequacy of Stripe's transfer mechanisms directly affects whether EU and UK user data is protected to required standards when processed outside those regions.
Webull
· Webull Privacy Policy
For users outside the United States, particularly in the EU and UK, this means your personal and financial data may be subject to U.S. legal process and privacy standards that may differ from those that apply in your jurisdiction.
For users in the EEA, UK, and other regions with strong data protection laws, transferring data internationally can reduce the legal protections that apply to your personal information.
Tinder
· Tinder Privacy Policy
Data transferred to the US from the EU or UK may be subject to different legal protections, including potential access by US intelligence agencies under US surveillance law.