ISO 27701 | 7.5.3

Records of transfer of PII

The organization should record transfers of PII to or from third parties and ensure cooperation with those parties to support future requests related to obligations... ... - Licensed content not shown -

GDPR (EU)

30.1.e: Article(30)(1)(e): Each controller and, where applicable, the controller's representative, shall maintain a record of processing activities under its responsibility. That record shall contain all of the following information: (e)where applicable, transfers of personal data to a third country or an international organisation, including the identification of that third country or international organisation and, in the case of transfers referred to in the second subparagraph of Article 49(1), the documentation of suitable safeguards

LGPD (BRA)

Art.37: The controller and processor must record their personal data processing operations performed, especially when based on legitimate interest.

Personal Data Protection Act - Singapore

S.4.3: Organisations have the same obligations in respect of personal data processed for them by a 'data intermediary' as if it was processed by them (S.4(3))