Products Intelligence Pricing Methodology Contact
TECHNOLOGY, AI & COMPETITION

Cross-border data transfer compliance

Cross-border data transfer compliance is one of the most operationally disruptive regulatory pressures facing technology and AI companies right now. The European Data Protection Board has issued binding guidance on standard contractual clauses that directly affects how AI model training data moves between the EU and third countries, while the U.S. Federal Trade Commission has signaled that data localization failures in AI supply chains will factor into unfair practice enforcement. China's Personal Information Protection Law, enforced by the Cyberspace Administration of China, adds a parallel compliance track for any company processing Chinese user data on foreign infrastructure.

Watch

  • EU-U.S. Data Privacy Framework adequacy decision: challenge proceedings still active at CJEU
  • CAC security assessment requirement for outbound data transfers exceeding 100,000 user records
  • FTC Section 5 enforcement posture on AI vendor data-sharing disclosures
  • Standard contractual clause addenda required for AI processors under EDPB guidance issued late 2023

Recent material activity in Technology, AI & Competition

  • Apr 11, 2026 MATERIAL

    NIST releases updated AI Risk Management Framework companion guide for critical infrastructure

    NIST published AI RMF 1.1 companion guidance specifically addressing AI deployment in critical infrastructure sectors including energy, financial services, and healthcare. The guide introduces mandatory risk assessment c…

    Read a full sample brief →