Threat D.GDPR.DFHuoO.1

URI: D.GDPR.DFHuoO.1

Package: GDPR

< prev | next >

Description: Personal data Data related to DataSubject transferred across borders: since the data subject DataSubject is subject to the GDPR, their data Data should not be communicated by process FlowsFrom across a border to process Process in jurisdiction RemoteJurisdiction unless the GDPR is in force or equivalent protection is provided.

Threat Type: Primary Threat

Matching Pattern:

D.GDPR.DFHuoO.1
MP-DFHuoO

Finds personal data being transferred across a border to a process that optionally has an operator organisation.

        (empty)

        (empty)

        CSG-GDPRAtSubject

        (empty)

CSG-GDPRAtRemoteJurisdiction

The jurisdiction RemoteJurisdiction is subject to the GDPR.

CSG-GDPRPrivacyShieldAtOrganisation

Organisation Operator has Privacy Shield status under the GDPR, i.e. they are committed to respect and uphold the GDPR when handling personal data from EU citizens and residents, even though they are based outside the EU.

CSG-GDPRSuspendDataFlow

The flow of data Data from FlowsFrom to Process can be temporarily disabled by the manager Human1 of FlowsFrom to prevent a breach of GDPR regulations by its transmission to Process. This strategy represents a contingency plan, which can be used to prevent such a breach, but it may also trigger other threats representing possible side effects.

CSG-GDPRSuspendDataFlow-Implementation-Runtime

The flow of data Data from FlowsFrom to Process has been disabled by Human1 to prevent a breach of the GDPR. This strategy represents activation of a contingency plan at runtime, and can be selected to discover what effect this would have on risk levels, allowing this to be used for decision support calculations. To activate it at runtime, signal user Human1 who is responsible for managing the service FlowsFrom.