The BH Consulting Transfer Impact Assessment (TIA) clarifies an organisation’s exposure to risks linked to transferring personal data of EU residents to countries without an existing EU data protection adequacy agreement.
A Transfer Impact Assessment (aka a Transfer Risk Assessment) is required to comply with the Schrems II ruling and supports planning for any required change.
Transfer Impact Assessments are mandated in both the European Data Protection Board (EDPB) guidance on Supplementary Measures and the updated draft of the Standard Contractual Clauses (SCCs)
Each individual assessment is relatively quick to do, clarifies required next steps, and enables our clients to demonstrate GDPR accountability to both internal stakeholders and customers. It also provides clarity about scope to illustrate effort required and prioritise work.
The output of the assessment provides clients with an understanding of the steps required and the means to plan changes to mitigate or minimise highlighted risks.
We work with organisations on developing an action plan to manage the implementation of the given recommendations. Our experienced consultants will also help clients establish and document the tailored Data Transfer Impact Assessment process for their organisation to use internally.
BH Consulting can help by:
This service can be carried out remotely.