GDPR does not require EU personal data to stay in the EU, nor does it place any new Requested Data restrictions on transfer of personal data outside the EU. GDPR only mandates that such transfers be legitimised through any of the mechanisms provided in the regulation. Some ways of legitimising transfers are through EU-US Privacy ShieldCertification and Model Contractual Clauses. Freshworks is certified under EU-US and Swiss-US Privacy Shield.