International Data Transfer Safeguards
Last updated: [25th May 2026]
- Overview
VetFlash may transfer personal data outside the United Kingdom and the European Economic Area (EEA) when using trusted service providers, infrastructure partners and third-party tools necessary to operate the Service.
Where such transfers occur, we ensure appropriate safeguards are applied in accordance with applicable data protection laws.
- Transfer Mechanisms
Depending on the destination country and service provider, we may rely on one or more of the following safeguards:
- UK International Data Transfer Agreement (IDTA)
- UK Addendum to the EU Standard Contractual Clauses (SCCs)
- EU Standard Contractual Clauses (SCCs)
- Adequacy decisions or adequacy regulations issued by relevant authorities
- Recognised international frameworks, such as the EU–US Data Privacy Framework and UK Extension (where applicable)
- Additional Safeguards
In addition to legal transfer mechanisms, VetFlash may implement technical and organisational measures, including:
- Encryption of data in transit and at rest
- Access controls and role-based permissions
- Data minimisation and purpose limitation practices
- Vendor due diligence and security assessments
- Contractual confidentiality and data protection obligations
- Restrictions on onward transfers
- Data retention and deletion controls
- Our Approach
VetFlash only transfers personal data internationally where necessary to provide and operate the Service. We take reasonable steps to ensure that personal data remains protected in accordance with applicable data protection laws.
- Contact
If you would like more information about the safeguards applied to your personal data or specific transfer mechanisms, you can contact us at:
Email: info@vetflash.io