The Personal Data Transfer Agreement is essential for organizations transferring personal data under Belgian jurisdiction, particularly in light of stringent EU data protection requirements. This document is required whenever personal data is transferred between separate legal entities, whether within the EU or to third countries. It addresses key compliance requirements under the GDPR and Belgian Data Protection Act, including data security measures, processing limitations, and data subject rights. The agreement becomes particularly crucial when dealing with international data transfers, where additional safeguards may be necessary. It should be implemented before any data transfer begins and updated when there are significant changes in data processing activities or applicable regulations. The document typically incorporates or references Standard Contractual Clauses when transfers involve non-EU countries without adequacy decisions.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
1. Parties: Identification of the data exporter and data importer, including their roles (controller/processor)
2. Background: Context of the agreement, relationship between parties, and purpose of the data transfer
3. Definitions: Definitions of key terms used in the agreement, aligned with GDPR terminology
4. Scope and Purpose of Transfer: Details of the personal data being transferred, categories of data subjects, and purposes of processing
5. Roles and Responsibilities: Clear delineation of each party's obligations and responsibilities under data protection laws
6. Transfer Mechanism: Legal basis for the transfer (e.g., SCCs, adequacy decision) and compliance requirements
7. Data Security: Security measures required for data protection during transfer and processing
8. Data Subject Rights: Procedures for handling data subject requests and ensuring their rights
9. Breach Notification: Protocol for reporting and handling personal data breaches
10. Audit Rights: Provisions for monitoring and verifying compliance
11. Term and Termination: Duration of the agreement and conditions for termination
12. Return or Deletion of Data: Obligations regarding data handling upon agreement termination
13. Governing Law and Jurisdiction: Specification of Belgian law as governing law and jurisdiction for disputes
14. General Provisions: Standard contractual clauses including severability, entire agreement, and amendments
1. Sub-processing: Required when the data importer may engage sub-processors, including authorization process and obligations
2. Special Categories of Data: Required when sensitive personal data is being transferred, specifying additional safeguards
3. International Transfers: Required for onward transfers to third countries, specifying additional safeguards and requirements
4. Data Protection Impact Assessment: Required when processing poses high risks to data subjects
5. Joint Controller Provisions: Required when parties act as joint controllers, defining respective responsibilities
6. Insurance Requirements: Optional section specifying required insurance coverage for data protection
7. Force Majeure: Optional provisions for handling circumstances beyond parties' control
1. Schedule 1 - Description of Transfer: Detailed description of data transfers including categories of data, subjects, and purposes
2. Schedule 2 - Technical and Organizational Measures: Detailed security measures implemented by both parties
3. Schedule 3 - Authorized Sub-processors: List of approved sub-processors and their processing activities
4. Schedule 4 - Transfer Impact Assessment: Assessment of risks and safeguards for international transfers
5. Appendix A - Contact Points: List of key contacts for operational and emergency matters
6. Appendix B - Standard Contractual Clauses: If applicable, the EU SCCs incorporated into the agreement
7. Appendix C - Data Processing Details: Specific details about processing activities, frequency, and nature of processing
Find the exact document you need
GDPR Intercompany Agreement
A Belgian law-governed GDPR Intercompany Agreement regulating data processing and transfers between group entities in compliance with EU and Belgian data protection requirements.
Download
International Data Transfer Addendum
Belgian law-governed International Data Transfer Addendum ensuring GDPR compliance for cross-border personal data transfers.
Download
Intra Group Data Processing Agreement
Belgian law-governed data processing agreement for intra-group data transfers and processing activities, ensuring GDPR compliance within corporate groups.
Download
Data Processing Agreement Addendum
A Belgian law-governed addendum that establishes GDPR-compliant terms for personal data processing between a controller and processor.
Download
Data Processing Contract
A Belgian law-governed agreement defining terms for processing personal data under GDPR and national data protection requirements.
Download
Personal Data Agreement
Belgian law-governed Personal Data Agreement establishing data processing terms and GDPR compliance requirements between parties.
Download
DPA Legal Agreement
Belgian law-governed Data Processing Agreement establishing GDPR-compliant terms for personal data processing between controller and processor.
Download
Data Processing Addendum
A Belgian law-governed agreement establishing terms for personal data processing between controllers and processors, ensuring compliance with GDPR and Belgian data protection requirements.
Download
Controller To Controller Agreement GDPR
A Belgian law-governed agreement establishing GDPR-compliant data sharing arrangements between independent data controllers.
Download
International Data Protection Agreement
Belgian law-governed agreement for international personal data processing, ensuring GDPR and local law compliance.
Download
Data Management Agreement
A Belgian law-governed agreement establishing data management and processing requirements between parties, ensuring compliance with local and EU data protection regulations.
Download
Commissioned Data Processing Agreement
Belgian law-governed Data Processing Agreement establishing controller-processor relationships in compliance with GDPR and local data protection requirements.
Download
Intercompany Data Processing Agreement
Belgian law-governed agreement regulating personal data processing between affiliated companies within the same corporate group, ensuring GDPR compliance.
Download
Personal Data Transfer Agreement
A Belgian law-governed agreement establishing terms and conditions for transferring personal data between organizations, ensuring GDPR and local law compliance.
Download
Controller Processor Agreement
A Belgian law-governed agreement establishing terms for personal data processing between a controller and processor, complying with GDPR and Belgian Data Protection Act requirements.
Download
Order Processing Agreement
A Belgian law-governed agreement defining terms for personal data processing between controller and processor, ensuring GDPR and local law compliance.
Download
Sub Processing Agreement
A Belgian law-governed agreement establishing terms for sub-processor engagement in data processing activities, ensuring GDPR and local law compliance.
Download
Data Protection Addendum
Belgian law-governed data protection agreement establishing GDPR-compliant processing terms between controller and processor.
Download
ұԾ’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; ұԾ’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)