May 04 17:30 2018, Michiel van der Vlist wrote to Markus Reschke:
MR>> I found another tidbit. To transfer personal data to a non-EU country MR>> legally the destination country has to be on a white-list of MR>> countries with similar data privacy laws. The USA aren't on that list MR>> but there's the Privacy Shield. If you want to transfer personal data MR>> to the US, like the Z2 part of the nodelist, the organization in the MR>> USA receiving the data has to be certified for being compliant with MR>> the Privacy Shield. In our case Z1 would need that certification.
MvdV> I fail to see how this can apply to data that is made publically MvdV> available. Does it apply to telephone books?
The GDPR doesn't differentiate between public and non-public private data. A printed telephone book could be a different story. The GDPR surely applies to the personal data for the telephone book.