Press Release

OneTrust Launches Free Schrems II Solutions with Vendor SCC Validation Templates

September 01, 2020

OneTrust today announced a range of free Schrems II Solutions to help organizations respond to the operational challenges posed by the Schrems II decision. These solutions will help organizations identify existing data transfers and mechanisms, use pre-built templates to assess the validity of those relying on Standard Contractual Clauses (SCCs), and manage any required contract updates and vendor changes.

To legally transfer personal data from the EU to a third country, it must be shown that the recipient country and company have an equivalent level of data protection to that of the GDPR. With its judgment on the Schrems II case in July 2020, the Court of Justice of the European Union (CJEU) invalidated and cast doubt upon the two most common mechanisms relied on for transfers the United States: EU-US Privacy Shield and SCCs, respectively. While SCCs are still valid, they will require case-by-case consideration and it is unlikely that SCCs alone will establish GDPR equivalency.

To support the operational challenges posed to organizations by the CJEU’s ruling, OneTrust launched free Schrems II Solutions to assist controllers in identifying and validating data transfers with OneTrust Vendor Risk Management, Vendorpedia Exchange, Data Mapping, and DataGuidance. OneTrust’s Schrems II Solutions will help organizations:

Identify data transfers and the mechanisms relied upon with OneTrust Data Mapping
Assess vendors relying on SCCs with pre-built SCC validation templates in OneTrust Vendor Risk Management
Reduce the burden of these vendor assessments through pre-completed assessments and chasing services in the OneTrust Vendorpedia Exchange
Manage contract updates and vendor on-boarding and off-boarding through OneTrust Vendor Risk Management
Get instant alerts on new Schrems II guidance with OneTrust DataGuidance Regulatory Research

OneTrust’s solutions also help processors implement holistic privacy programs, track guidance on compensating controls for GDPR equivalency, and implement those controls as they are identified.

“The Schrems II ruling presents a brand-new set of challenges and we want to help our customers adapt their processes to continue to transfer personal data in line with the law,” said Kabir Barday, OneTrust CEO and Fellow of Information Privacy (FIP). “With OneTrust’s Schrems II Solutions, organizations can evaluate alternatives to Privacy Shield and demonstrate accountability when continuing to rely on SCCs for those transfers.”

Register for the webinar How to Operationalize Schrems II Impact. For information or to sign up for our free Schrems II Solution, visit  onetrust.com/schrems.

OneTrust, OneTrust Schrems II Solutions, OneTrust Data Mapping, OneTrust Vendor Risk Management, Vendorpedia, Vendorpedia Exchange, and DataGuidance are registered trademarks or trademarks of OneTrust LLC or its subsidiaries in the United States and other jurisdictions.

Availability
OneTrust’s Schrems II Solutions are available today with new templates added over the coming weeks.

About OneTrust

OneTrust  is the #1 fastest growing and most widely used technology platform to help organizations be more trusted, and operationalize  privacy, security, data governance, and compliance programs. More than 6,000 customers, including half of the Fortune 500, use OneTrust to build integrated programs that comply with the CCPA, GDPR, LGPD, PDPA, ISO27001, and hundreds of the world’s privacy, security, and compliance frameworks.

The  OneTrust  platform is powered by the OneTrust Athena™ AI and robotic automation engine, and our offerings include:  

OneTrust Privacy - Privacy Management Software 
OneTrust PreferenceChoice™ - Consent and Preference Management Software 
OneTrust Vendorpedia™ - Third-Party Risk Management Software and Cyber Risk Exchange 
OneTrust GRC - Integrated Risk Management Software 
OneTrust  DataDiscovery™ - AI-Powered Discovery and Classification 
OneTrust  DataGovernance - Governance and Metadata Management 
OneTrust Ethics - Compliance and Ethics Software 
OneTrust  DataGuidance™ - Regulatory Research Software

Be a More Trusted Organization™. To learn more, visit OneTrust.com or connect on LinkedIn, Twitter, and Facebook.

Press Release

OneTrust Launches Free Schrems II Solutions with Vendor SCC Validation Templates

You may also like

Third-Party Risk

Beyond compliance: Scaling third-party risk management with automation

Join this live webinar to explore how automated vendor assessments, real-time monitoring, and compliance workflows can enhance risk insights and operational efficiency.

May 07, 2025

Understand consent requirements in financial services

Learn how GDPR, CCPA, and more shape consent in financial services. Get clear, practical insights on compliance with our easy-to-understand infographic.

April 25, 2025

Consent & Preferences

GDPR compliance checklist: Actionable steps for marketers

Download this GDPR compliance checklist to simplify consent management, stay compliant, and build trust. Get actionable steps tailored for marketers.

February 24, 2025

Privacy Management

Data Privacy Day 2025

Join this webinar to hear from a panel of expert privacy professionals as they dissect the key happenings in 2024 and how privacy professionals can approach what may occur in 2025.

January 21, 2025

Privacy Management

Revisiting IAPP DPC 2024: Top trends on the latest data protection developments

Join OneTrust and PA Consulting as we dive deeper into the key takeaways from the IAPP Europe Data Protection Congress 2024. Our speakers will provide actionable insights from the event on the latest developments in data protection, privacy, and AI.

December 12, 2024

Privacy Automation

GDPR: Dos and don'ts

Navigating GDPR compliance can feel daunting, especially for businesses with limited resources. This quick infographic guide of actionable “dos” and “don’ts” will help you develop the foundation of a broader privacy-first approach that keeps you aligned with your GDPR compliance goals.

December 10, 2024

Consent & Preferences

Mastering GDPR consent: A marketer's guide to simplifying compliance

Learn how to simplify GDPR consent management, stay compliant, and build trust with your audience. Download this practical guide for marketers.

October 17, 2024

Privacy Management

Maturing your GDPR compliance program

This comprehensive eBook explores the key elements of a GDPR compliance program.

September 11, 2024

Privacy Management

Understanding data transfers under the GDPR ebook

In the ebook, we delve into the fallout from Schrems II and explore how organizations based in Europe can best navigate international data transfers under the GDPR.

June 05, 2024

Privacy Management

Preparing for a new regulation: Lesson learned from the GDPR businesses can apply to the EU AI act?

Join our panel of experts as we celebrate GDPR Anniversary and take a closer look at the relationship between the GDPR and AI Act.

May 23, 2024

Privacy Management

Navigating data privacy in 2024: Global regulatory updates & compliance strategies

Join our webinar for a comprehensive overview of the latest global data privacy regulations and updates impacting businesses in 2024 and how to prepare.

March 20, 2024

Privacy Management

OneTrust announces partnership with Europrivacy

Learn how OneTrust and Europrivacy's partnership can help your organization achieve GDPR compliance and build trust with your customers.

December 06, 2023

Technology Risk & Compliance

Demonstrating GDPR compliance with Europrivacy criteria: The European Data Protection Seal

Join our webinar to learn more about the European Data Protection Seal and to find out what the key advantages of getting certified.

November 30, 2023

Privacy Management

Revisiting the ICO Data Protection Practitioner's Conference: Addressing your top challenges

Join OneTrust and KPMG UK to discuss the challenges of employee SARs, managing your breach response with third parties, and incident management.

October 25, 2023

Privacy & Data Governance

Understanding the EU Data Boundary

Download our free infographic and get the information you need to understand the EU Data Boundary and how to properly handle data in the European Union.

September 22, 2023

Privacy Management

Privacy in practice: PIA & DPIA with PA Consulting

Join OneTrust and PA Consulting as we discuss what makes an effective PIA, best practices, and the benefits of automation.

September 21, 2023

Privacy & Data Governance

Privacy in practice for data mapping: With PA Consulting and Syngenta

Join OneTrust and panelists from PA Consulting and Syngenta as we explore practical ways to build an effective data mapping program, best practices, and the need for automation.

September 14, 2023

Governance & Policy Management

EU-US DPF: What next for UK businesses?

Join our expert webinar as we discuss the upcoming UK-US DPF Extension and what UK businesses need to prepare to become DPF-certified.

September 06, 2023

Privacy Management

Unpacking the EU-US DPF

In this webinar, we cover the new EU-US Data Privacy Framework (EU-US DPF) and what privacy program managers need to know for post-Schrems II data transfers.

June 28, 2023

Privacy & Data Governance

The 3 priorities of the French DPO: Gain visibility, take action, automate