There is a need for new safeguards the regulation to cater to a manageable way of dealing with cross-border flows. The Information Regulator has decided not to develop a white list because it would be quite challenging to review and assess whether the determinations found in the various data protection laws around the world are adequate enough for a specific sector. The Information Regulator makes use of the influence of the GDPR and other systems such as the cross-border privacy rules system which is promoted by Apec countries and using standard contractual clauses (SCCs).