Third country transfers

In the light of the CJEU ruling on the case referred to as “Schrems II”, most businesses must now assess their transfers of personal data to third countries, including the US. Thomson Reuters is a global provider of cloud-based solutions used by businesses to reach other businesses worldwide, and is therefore naturally affected by the implications of the ruling. Thomson Reuters' business is built upon providing secure and compliant solutions for our customers, and we are continuously monitoring the legal landscape to be up to date. Here we have gathered some key information that may be useful when assessing your use of Thomson Reuters' services in the light of the Schrems II case:

The platform (ONESOURCE Pagero) is hosted in Sweden and France

If you have selected any additional service (such as for example print, scanning or data capture) the additional service may be provided by a provider based in a region outside of your own in accordance with the specific agreement. You can find the list of all such additional services and their providers here. Please reach out to your sales rep if you are unsure of which services and providers apply to you.

Depending on where your recipients of documents are located, the service itself may allow you to transfer information to any recipient in the world.

Thomson Reuters is a global company with offices all over the world, which enables us to provide timely and efficient support to our customers as well as local project management. If you are an EU-based company, we have put technical measures in place to ensure that your e-invoicing data is not transferred outside of the EU, including removing any non-EU employee access for development or support within ONESOURCE Pagero.

If your company is based outside of the EU, Thomson Reuters employees from other offices may have access. A full list of all Thomson Reuters entities with access can be found here. Transfers of personal data within the group is governed by an intra group processing agreement and we have implemented technical and organizational measures to ensure the security of the data. Please read more about how we protect data here.

If you have any questions or would like to discuss more, please do not hesitate to contact your sales rep for further information and support.

If you have any questions or would like to discuss more, please do not hesitate to contact your sales representative or Thomson Reuters data protection officer at dpo@thomsonreuters.com