"No Party may prevent a service supplier of another Party from transferring, [accessing, processing or storing] information, including personal information, within or outside the Party’s territory, where such activity is carried out in connection with the conduct of the service supplier’s business."
That seems to be saying not just that they can transfer information anywhere, but that they can use any information they want as long as it's somehow connected to their business.
So if they could grab for instance your health records they could do whatever they wanted with them. They can use any data they have on you however they want, without limit. Including of course selling it to other businesses.