Governance PackRegional & Privacy

Cross-Border Data Transfer

Frames cross-border AI traffic around GDPR SCCs, UK IDTA, and transfer-assessment considerations through redaction, operator-declared provider eligibility, citation checks, a configurable human-oversight point, and logged routing decisions.

This template is a configurable starting point and control mapping. It is not certification, legal advice, or a guarantee of compliance; validate it against your obligations and environment before use.

Regions

EU, UK, Global

References

3 references

Mapped Control Domains

4 mapped domains

Deployment

Regulated SaaS, Sovereign Region

Referenced Frameworks, Standards & Obligations

GDPR SCCsUK IDTACross-border transfer assessments

Mapped Control Domains

Data Privacy
Audit Logging
Data Residency
Human Oversight

Deployment profiles

Regulated SaaS
Sovereign Region

Get started in 3 steps

1

Open the template

Open the catalog entry in the Keeptrusts console and review its included controls, references, and deployment metadata.

2

Adapt the configuration

Use the template as a starting point, then adjust relevant policies, thresholds, routing, and review settings for your requirements.

3

Validate before rollout

Test every outcome you configure—such as allow, redact, block, or operator review—before deploying through a supported gateway workflow.