> The second is seen in Europe, where GDPR guarantees privacy yet hinders data movement across borders
It doesn't.
On the contrary, it's explicitly provided for. Obviously, there are rules along the lines of maintaining adequate levels of protection.
Note that the issue with sending data to the US is not one of GDPR per se but one of CFR, notably the right to be heard by a judge pretermitted by the law and the right to legal recourse.