Norway: Adopted Datatilsynet alert on data transfer risks due to Ukraine conflict

On 4 March 2022, the Norwegian Data Protection Authority Datatilsynet published an alert on data transfer risks due to the Russian invasion of Ukraine. In particular, the export of data to Russia or Ukraine may bring security risks, especially when it occurs in cooperation with data processors operating in Russia and Ukraine. Therefore, Datatilsynet urges all companies transfering personal data from Norway to recipients in Ukraine and Russia to reconsider the legal basis for the data transfers and ensure that appropriate security measures for data protection are in place.