Manage 3rd Party Data Transfers

The GDPR imposes restrictions on sharing Personally Identifiable Information (PII).

Sharing data is classified as being with a joint data controller (for joint purposes), another data controller (a third party for their own use) or a data processor, engaged to store or use data for you.

The Sharing of data needs a good reason, individuals must be informed that their personal data is being shared, the volume of personal data needs to be minimised, it must be shared for a minimum time, it must happen in a secure way and the sharing should be documented.