Unless otherwise defined this Agreement, all capitalized terms used in this Agreement will have the meanings given to them below:
The European Commission has the power to determine, on the basis of GDPR Article 45, whether a country outside the EU offers an adequate level of data protection, whether by its domestic legislation or of the international commitments it has entered into.
The effect of such a decision is that personal data can flow from the EU and EEA (Norway, Liechtenstein and Iceland) to that third country without any further safeguard being necessary.
The European Commission has so far recognised Andorra, Argentina, Canada (commercial organisations - PIPEDA), Faroe Islands, Guernsey, Israel, Isle of Man, Japan, Jersey, New Zealand, Switzerland, Uruguay and the US (limited to the Privacy Shield framework) as providing adequate protection.
personal data that in the GDPR are named special categories of personal data.
Personal data are sensitive if processing of personal data reveal:
Also, personal data are sensitive if:
Sensitive personal data are also: