Page contents Page contents The European Commission has the power to determine, on the basis of article 45 of Regulation (EU) 2016/679 whether a country outside the EU offers an adequate level of data protection.The adoption of an adequacy decision involves:a proposal from the European Commission;an opinion of the European Data Protection Board;an approval from representatives of EU countries;the adoption of the decision by the European Commission.At any time, the European Parliament and the Council may request the European Commission to maintain, amend or withdraw the adequacy decision on the grounds that its act exceeds the implementing powers provided for in the regulation.The effect of such a decision is that personal data can flow from the EU (and Norway, Liechtenstein and Iceland) to that third country without any further safeguard being necessary. In others words, transfers to the country in question will be assimilated to intra-EU transmissions of data.The European Commission has so far recognised:Andorra,Argentina,Canada (commercial organisations),Faroe Islands,Guernsey,Israel,Isle of Man,Japan,Jersey,New Zealand,Republic of Korea,Switzerland,the United Kingdom under the GDPR and the LED, as amended in December 2025 through one renewal decision under the GDPR and one renewal decision under the LED ,the United States (commercial organisations participating in the EU-US Data Privacy Framework),Uruguay,and the European Patent Organisation as providing adequate protection.With the exception of the United Kingdom, these adequacy decisions do not cover data exchanges in the law enforcement sector which are governed by the Law Enforcement Directive (Article 36 of Directive (EU) 2016/680).The Commission is required to periodically review the adequacy decisions adopted under the GDPR and its predecessor, Directive 95/46/EC, and to report its findings to the European Parliament and the Council. In line with this obligation, the Commission published its Report on the first periodic review of the adequacy decision for Japan on 4 April 2023. On 15 January 2024 the Commission published its Report on the first review of the functioning of the eleven adequacy decisions adopted pursuant to Directive 95/46/EC. On 9 October 2024, the Commission published its Report on the first review of the functioning of the adequacy decision on the EU-US Data Privacy Framework. High-level meeting on International Data Flows On 4 March 2024, the Commission hosted the first ever high-level meeting on safe data flows, gathering responsible Ministers and heads of the data protection authorities of 15 countries and territories for which the EU has adopted an adequacy decision as well as the Chair of the European Data Protection Board. Participants discussed ways to leverage this network of like-minded partners to maximise the benefits of safe and free data flows and explored avenues for closer cooperation on enforcement of data protection rules. Adequacy decisions latest 19 décembre 2025Commission renews decisions to allow for the free and safe flow of personal data with the UKToday, the Commission renewed the two 2021 adequacy decisions for the free flow of personal data with the United Kingdom. 9 avril 2025Joint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Information Protection of JapanJoint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Personal Information Protection of Japan 9 avril 2025Joint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Information Protection of JapanJoint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Personal Information Protection of Japan 19 mars 2025Commission proposes to extend adequacy decisions for the UK by six months for free and safe data flowsToday, the Commission has proposed to adopt an extension of the two 2021 adequacy decisions with the United Kingdom for a period of six months. Tout afficher Documents 5 SEPTEMBRE 2025Draft Adequacy Decision with Brazil 22 JUILLET 2025Draft Renewal of EU adequacy decision for the UK under the GDPR 22 JUILLET 2025Draft Renewal of EU adequacy decision for the UK under the LED 15 JUILLET 2025Adequacy decision for the European Patent Organisation 24 JUIN 2025Technical extension of the UK Data Adequacy Decision on the GDPR 24 JUIN 2025Technical extension of the UK Data Adequacy Decision on the LED 9 OCTOBRE 2024Report on the first periodic review of the functioning of the adequacy decision on the EU-US Data Privacy Framework 15 JANVIER 2024Report on the first review of the functioning of the adequacy decisions adopted pursuant to Article 25(6) of Directive 95/46/EC 15 JANVIER 2024Commission Staff Working Document - Country reports on the functioning of the adequacy decisions adopted under Directive 95/46/EC 10 JUILLET 2023Adequacy decision for the EU-US Data Privacy Framework 4 AVRIL 2023Report on the first periodic review of the adequacy decision for Japan 4 AVRIL 2023Commission Staff Working Document - Report on the first periodic review of the adequacy decision for Japan 17 DÉCEMBRE 2021Decision on the adequate protection of personal data by the Republic of Korea with annexes 28 JUIN 2021Decision on the adequate protection of personal data by the United Kingdom - General Data Protection Regulation 28 JUIN 2021Decision on the adequate protection of personal data by the United Kingdom: Law Enforcement Directive 14 JANVIER 2019EU Japan Adequacy Decision - Factsheet Related linksData protection: European Commission launches process on personal data flows to UKPress release - 19 February 2021International data flows: Commission launches the adoption of its adequacy decision on JapanPress release - 5 September 2018Press statement by Commissioner Věra Jourová, Mr. Lee Hyo-seong, Chairman of the Korea Communications Commission and Mr. Jeong Hyun-cheol, Vice President of the Korea Internet & Security AgencyPress Statement - 20 November 2017Joint Declaration by Mr. Shinzo Abe, Prime Minister of Japan, and Mr. Jean-Claude Juncker, President of the European CommissionJoint Declaration - 6 July 2017Joint statement by Commissioner Věra Jourová and Haruhi Kumazawa, Commissioner of the Personal Information Protection Commission of Japan on the state of play of the dialogue on data protectionJoint Statement - 4 July 2017
19 décembre 2025Commission renews decisions to allow for the free and safe flow of personal data with the UKToday, the Commission renewed the two 2021 adequacy decisions for the free flow of personal data with the United Kingdom.
9 avril 2025Joint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Information Protection of JapanJoint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Personal Information Protection of Japan
9 avril 2025Joint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Information Protection of JapanJoint press statement by Michael McGrath and Ohshima Shuhei, Commissioner of the Personal Personal Information Protection of Japan
19 mars 2025Commission proposes to extend adequacy decisions for the UK by six months for free and safe data flowsToday, the Commission has proposed to adopt an extension of the two 2021 adequacy decisions with the United Kingdom for a period of six months.
Data protection: European Commission launches process on personal data flows to UKPress release - 19 February 2021
International data flows: Commission launches the adoption of its adequacy decision on JapanPress release - 5 September 2018
Press statement by Commissioner Věra Jourová, Mr. Lee Hyo-seong, Chairman of the Korea Communications Commission and Mr. Jeong Hyun-cheol, Vice President of the Korea Internet & Security AgencyPress Statement - 20 November 2017
Joint Declaration by Mr. Shinzo Abe, Prime Minister of Japan, and Mr. Jean-Claude Juncker, President of the European CommissionJoint Declaration - 6 July 2017
Joint statement by Commissioner Věra Jourová and Haruhi Kumazawa, Commissioner of the Personal Information Protection Commission of Japan on the state of play of the dialogue on data protectionJoint Statement - 4 July 2017
