The free flow of data is the cornerstone of international business. Through cross border data transfer, data sharing underpins business transactions and supports international cooperation. Any change to the scheme of international data transfer will have far-reaching impacts, as they usually bring up new compliance requirements, which can be complex and sometimes even totally different than before. Furthermore, with different levels of development and mindset of privacy, countries are taking diverging approaches to govern international data transfers. Hence, companies must keep tracks of the change of leading legislations. In 2020, the European Court of Justice, again, delivered a landmark decision, which deals with international data transfers between the European Union and the United States. The so-called Schrems II judgment, on the one hand, invalidates the Privacy Shield agreement, while, on the other hand, upholds the commission’s decision on standard contractual clauses (SCCs) for the transfer of personal data to a third country. Data transfer from the EU to the US after Schrems II could keep using SCCs as a compliance tool. The judgment, however, has significant implications for the data protection requirements and the responsibility of data exporters and data importers, especially when local laws and government access requests affect the compliance with the SCCs. In addition, the application of SCCs also raises further discussions about new data protection supplementary measures and the relation between article 3 and chapter 5 of the GDPR. As EU is one of Taiwan’s important economic and political partners, this study, therefore, analyzes the latest developments of SCCs and relevant compliance issues for the company as a data importer in Taiwan. This study has focused on not only how to import personal data from the EU but also how to export Taiwan’s personal data safely and maintain the same level of protection to other third countries. In order to thoroughly understand how to adopt contractual clauses as a compliance tool for data protection, in addition to EU’s SCCs, this study further analyzes Model Contractual Clauses from The Association of Southern Asian Nations and the Model Contract from New Zealand. In the end, this study will propose Taiwan’s own standard contractual clauses for international data transfer.