Navigazzjoni
RĠPD (GDPR) > Artikolu 44. Prinċipju ġenerali għal trasferimenti
Download PDF

Artikolu 44 RĠPD (GDPR). Prinċipju ġenerali għal trasferimenti

Article 44 GDPR. General principle for transfers

Kwalunkwe trasferiment ta’ data personali li tkun qed tiġi pproċessata jew hija maħsuba li tiġi pproċessata wara trasferiment lejn pajjiż terz jew lejn organizzazzjoni internazzjonali għandu jseħħ biss jekk, soġġett għad-dispożizzjonijiet l-oħra ta’ dan ir-Regolament, il-kontrollur u l-proċessur ikunu f’konformità mal-kondizzjonijiet stipulati f’dan il-Kapitolu, inkluż għal trasferimenti ulterjuri ta’ data personali mill-pajjiż terz jew minn organizzazzjoni internazzjonali lejn pajjiż terz ieħor jew lejn organizzazzjoni internazzjonali oħra. Id-dispożizzjonijiet kollha f’dan il-Kapitolu għandhom jiġu applikati sabiex jiġi żgurat li ma għandux jiddgħajjef il-livell ta’ protezzjoni tal-persuni fiżiċi ggarantit minn dan ir-Regolament.

Any transfer of personal data which are undergoing processing or are intended for processing after transfer to a third country or to an international organisation shall take place only if, subject to the other provisions of this Regulation, the conditions laid down in this Chapter are complied with by the controller and processor, including for onward transfers of personal data from the third country or an international organisation to another third country or to another international organisation. All provisions in this Chapter shall be applied in order to ensure that the level of protection of natural persons guaranteed by this Regulation is not undermined.

Kummentarju ISO 27701 Premessi Linji ta 'Gwida & Ġurisprudenza Ħalli kumment
Kummentarju
(EN) Author
Nastassia Parkhimovich
(EN) Nastassia Parkhimovich (EN) LLM, CIPP/E, GDPR DPP
(EN) GDPR Consultant
Siarhei Varankevich
(EN) Siarhei Varankevich CIPP/E, CIPM, CIPT, MBA, FIP
FIP_IAPP
(EN) Co-Founder & CEO of Data Privacy Office LLC. Data Protection Trainer and Principal Consultant
ISO 27701

(EN) ISO/IEC 27701, adopted in 2019, added additional ISO/IEC 27002 guidance for PII controllers.

Here is the relevant paragraph to article 44 GDPR:

7.5.1 Identify basis for PII transfer between jurisdictions

Control

The organization should identify and document the relevant basis for transfers of PII between jurisdictions.

Implementation guidance

PII transfer can be subject to legislation and/or regulation depending on the jurisdiction or international organization to which data is to be transferred (and from where it originates).

(EN) […]


to read the full text

Premessi

(101) Il-flussi ta' data personali lejn pajjiżi barra mill-Unjoni u organizzazzjonijiet internazzjonali u viċe versa huma meħtieġa għall-espansjoni tal-kummerċ internazzjonali u l-kooperazzjoni internazzjonali. Iż-żieda f'tali flussi qajmet sfidi u tħassib ġodda fir-rigward tal-protezzjoni tad-data personali. Madankollu, meta d-data personali tkun trasferita mill-Unjoni lil kontrolluri, proċessuri jew destinatarji oħra f'pajjiżi terzi jew lil organizzazzjonijiet internazzjonali, il-livell ta' protezzjoni tal-persuni fiżiċi żġurata fl-Unjoni minn dan ir-Regolament m'għandux jiddgħajjef, inkluż f'każijiet ta' trasferimenti ulterjuri ta' data personali mill-pajjiż terz jew l-organizzazzjoni internazzjonali lil kontrolluri, proċessuri fl-istess pajjiż terz jew ieħor jew organizzazzjoni internazzjonali oħra. Fi kwalunkwe każ, it-trasferimenti għal pajjiżi terzi u organizzazzjonijiet internazzjonali jistgħu jsiru biss f'konformità sħiħa ma' dan ir-Regolament. Trasferiment jista' jseħħ biss jekk, soġġett għal dispożizzjonijiet oħrajn ta' dan ir-Regolament, il-kontrollur jew il-proċessur jikkonforma mal-kondizzjonijiet stipulati f'dan ir-Regolament relatati mat-trasferiment ta' data personali lejn pajjiżi terzi jew organizzazzjonijiet internazzjonali.

(101) Flows of personal data to and from countries outside the Union and international organisations are necessary for the expansion of international trade and international cooperation. The increase in such flows has raised new challenges and concerns with regard to the protection of personal data. However, when personal data are transferred from the Union to controllers, processors or other recipients in third countries or to international organisations, the level of protection of natural persons ensured in the Union by this Regulation should not be undermined, including in cases of onward transfers of personal data from the third country or international organisation to controllers, processors in the same or another third country or international organisation. In any event, transfers to third countries and international organisations may only be carried out in full compliance with this Regulation. A transfer could take place only if, subject to the other provisions of this Regulation, the conditions laid down in the provisions of this Regulation relating to the transfer of personal data to third countries or international organisations are complied with by the controller or processor.

(102) Dan ir-Regolament huwa mingħajr preġudizzju għal ftehimiet internazzjonali konklużi bejn l-Unjoni u pajjiżi terzi li jirregolaw it-trasferiment ta' data personali inklużi s-salvagwardji adatti għas-suġġetti tad-data. L-Istati Membri jistgħu jikkonkludu ftehimiet internazzjonali li jinvolvu t-trasferiment ta' data personali lejn pajjiżi terzi jew organizzazzjonijiet internazzjonali, sa fejn dawn il-ftehimiet ma jaffettwawx dan ir-Regolament jew kwalunkwe dispożizzjoni oħra tal-liġi tal-UE u jinkludu livell adatt ta' protezzjoni għad-drittijiet fundamentali tas-suġġetti tad-data.

(102) This Regulation is without prejudice to international agreements concluded between the Union and third countries regulating the transfer of personal data including appropriate safeguards for the data subjects. Member States may conclude international agreements which involve the transfer of personal data to third countries or international organisations, as far as such agreements do not affect this Regulation or any other provisions of Union law and include an appropriate level of protection for the fundamental rights of the data subjects.

Linji ta 'Gwida & Ġurisprudenza Ħalli kumment
[js-disqus]