Skip to Main Content
Learn for less: Save 25% on high-quality instructor-led and self-paced foundation training. Find out more
EU–US GDPR Data Transfer Assessment and Action Plan

EU–US GDPR Data Transfer Assessment and Action Plan

SKU: 5605
Authors: DQM
Format: Consultancy
Published: 05 Aug 2020
Availability: Available
  • This service will help you remain compliant with the GDPR (General Data Protection Regulation) when transferring personal data outside of the European Union, following the Schrems II privacy ruling.
  • Establish your level of compliance related to the location and lawfulness of your data processing.
  • Receive a practical, step-by-step action plan setting out what you need to do when transferring EU residents’ data to the US.

This service is provided by IT Governance’s sister company DQM GRC, a specialist in data privacy compliance, data quality and tracking.

Price: 6.495,00 €
ex. VAT
  • Do you or your suppliers transfer data between the EU and the US?
  • Do you or your suppliers use services built by US-owned companies such as Microsoft, Salesforce or Facebook?
  • Do you need help to make sure your data transfers are lawful?

Following the Schrems II ruling by the European Court of Justice in July 2020, any organisation transferring data from the EU to the US needs to take steps to ensure they remain compliant with the GDPR.

What the service includes

  • Our data privacy experts will conduct a detailed review of your records of processing, process maps and data flow maps to identify the processes that need to be addressed.
  • A set of questionnaires will be sent to your suppliers to review their data processing arrangements.
  • The responses provided by your suppliers will be reviewed and assessed.
  • A gap analysis will be undertaken to identify any missing information.
  • Our team will review your suppliers’ privacy notices and other supporting information.

What you can expect

  • A clear, actionable report on the key findings and recommendations for EU–US data transfers, presented during a one-hour meeting.
  • Clear information about remaining GDPR compliant in relation to EU–US data transfers.
  • A practical action plan that sets out the steps to take to improve your level of compliance.
  • Optional support to implement your action plan.

   Download service description

Speak to a EU data transfer expert today

Get in touch with one of our qualified data privacy specialists for free practical advice on the EU data transfer process.

If you are not eligible for the quoted service, please contact us to discuss your requirements and we will provide a quote based on your specific needs.

Enquire today

Why DQM?

Why use DQM GRC?

  • An award-winning data privacy consultancy and one of the longest-established specialist data protection consultancies in the UK.
  • Our clients range from multinational corporations to small family-run businesses.
  • We can draw on expert help from across GRC International Group, including hands-on implementation delivery, training, information security services, data protection legal and compliance assistance, and data protection software.


Due to the need to receive questionnaire responses from suppliers, please allow three weeks for this service to be completed.

Customer Reviews