Free flow of non-personal data

As an individual, business or organisation you have the right to use, collect, store, transfer or manage non-personal data, and to use data centres or cloud services anywhere in the EU.

This can help you avoid any potential duplication of costs; for example, you can centralise your IT infrastructure in one EU country, even if you operate in multiple countries.

Personal data, non-personal data and mixed datasets

Personal data is any information about an identified or identifiable person and follows GDPR rules.

Non-personal datasets refer to data which:

  • does not relate to an identified or identifiable natural person, such as data on weather conditions
  • was initially personal data, but was later made anonymous and cannot be attributed in any way to a specific person

Mixed datasets are collections of personal and non-personal data such as a company’s tax record, mentioning the name and telephone number of the managing director of the company. In most cases, the personal and non-personal data in mixed datasets are inextricably linked. If you handle such mixed datasets, you must follow GDPR rules.

You can store your data anywhere in the EU, including on cloud servers

Apart from the exceptional cases explained below, you can choose the location where data is stored or processed.

If you use a cloud service to store your data, EU data rules ensure that:

  • You can easily switch to another cloud provider or restore your data to your own IT systems.
  • Providers must give you your data in a common, machine-readable format and cannot create obstacles to switching.
  • If you use infrastructure services (IaaS), the new provider must deliver comparable results for shared features, so your applications continue to work.
  • Providers may charge limited costs for switching and for moving data out of a cloud services (egress). What they can charge is limited to the amount that they themselves spend on making a customer’s switching/egress possible.

Warning

From January 2027, switching and moving of data out of a cloud service will be completely free for cloud customers.

Data localisation restrictions in the EU

In exceptional cases, EU countries may be able to restrict the movement of certain data, but only if justified on the grounds of public security. Such a justification could be, for example, when data relates to ongoing counter-terrorism investigations, or when loss of data could risk a major traffic accident (such as for air traffic control data). These exceptions depend on national legislation. The EU regulation on the free flow of non-personal data gives access to information about such data localisation restrictions.

Sharing data with competent authorities

You must make data available if a competent authority makes a legitimate request to access your data, even if the data is managed or stored in another EU country. Penalties may be issued for non-compliance in accordance with national law.

National information and contact points

EU rules on the free flow of non-personal data outlines two information points that EU countries must provide:

  • Single information point” refers to an official website with national information about the data localisation restrictions and requirements.
  • Single point of contact” refers to a physical address and/or an email that you can contact for further information.

You can find this information in the Ask national administrations section below.

EU legislation

Need more information on rules in a specific country?

Choose country

Austria

Federal Chancellery

Freier Verkehr nicht personenbezogener Daten Open as an external link de

Belgium

Federal Public Service of Policy & Support

Federal Public Service of Economy

Single online information point at national level Open as an external link frnl

Bulgaria

The Ministry of eGovernment

Croatia

Ministry of Justice, Public Administration and Digital Transformation

Cyprus

Ministry of Research, Innovation and Digital Policy

Czechia

The Section for European Affairs of the Office of the Government of the Czech Republic

Volný pohyb neosobních dat | BusinessInfo.cz Open as an external link cs

Denmark

Danish Business Authority

Opbevaring og deling af data Open as an external link da

Estonia

Consumer Protection and Technical Regulatory Authority

The Consumer Protection and Technical Regulatory Authority

Economic Cooperation Unit

Consumer and Business Councelling Department

Endla 10A, 10122 Tallinn

Finland

Finnish Transport and Communications Agency Traficom

Germany

Federal Ministry for Economic Affairs and Climate Action

Greece

Ministry of Digital Governance Directorate of e-Governance Department for Open Governance & Transparency

General Secretariat for Information Systems & Digital Governance Open as an external link el

Ireland

Department of Environment, Climate and Communications

Italy

Presidency of the Council of Ministers Department for Digital Transformation

Largo Pietro di Brazzà, 86 00187

Roma

Ministro per l’innovazione tecnologica e la transizione digitale Open as an external link it

Latvia

Ministry of Environmental Protection and Regional Development of Latvia

Nepersondati | Viedās administrācijas un reģionālās attīstības ministrija Open as an external link lv

Lithuania

Ministry of the Economy and Innovation of the Republic of Lithuania

Gedimino Ave. 38, 01104 Vilnius, Lithuania

Europos sąjungos dokumentai Open as an external link lt

Luxembourg

The Department of Media, Connectivity and Digital Policy

Malta

Data Governance Council

Netherlands

The Ministry of Economic Affairs and Climate Policy

Poland

Ministry of Digital Affairs - Free flow of non-personal data in the EU - National Contact Point and National Information Point

Swobodny przepływ danych nieosobowych w UE - Krajowy Punkt Kontaktowy i Krajowy Punkt Informacyjny Open as an external link pl

Portugal

Administrative Modernization Agency

Rua de Santa Marta, 55

1150-294 Lisboa

Romania

Authority for the Digitalization of Romania (ADR)

Autoritatea pentru Digitalizarea României Open as an external link ro

Slovakia

Ministry of Investments, Regional Development and Informatization of the Slovak Republic

Slovenia

Ministry of Public Administration

Tržaška cesta 21

1000 Ljubljana

Spain

Ministry of Economic Affairs and Digital Transformation

P. de la Castellana 162

C.P. 28046 Madrid

Libre circulación de datos no personales en la Unión Europea Open as an external link es

Sweden

National Board of Trade Sweden

Nya datalokaliseringskrav ska anmälas enligt dataflödesförordningen Open as an external link sv

* Information not yet available.

Need support from assistance services?

Get in touch with specialised assistance services

Do you have questions on operating a business cross-border, for example exporting or expanding to another EU country? If so, the Enterprise Europe Network can give you free advice.

You can also use the assistance service finder to find the right help for you.

Last checked: 27/10/2025
Share this page