CNIL issues final guide for TIAs
France's data protection authority, the Commission nationale de l'informatique et des libertés, published the final version of its guide to help organizations conduct data transfer impact assessments. The guidance spells out when an impact assessment should be conducted and what objective should be sought. Meanwhile, the CNIL opened a public consultation through 28 Feb.