CNIL opens draft consultation on transfer impact assessments
France's data protection authority, the CNIL, has published a draft guide for conducting transfer impact assessments (TIAs) for data transfers outside the EEA.
The guide recommends that data controllers understand the laws in the receiving country, identify any supplemental measures, and reevaluate the level of data protection needed.