This Transfer Impact Assessment (TIA) checklist provides an overview of the key steps you can take as you perform a TIA as well as some key considerations your organization should keep in mind when assessing the legal frameworks for third countries.

What is a TIA?

The data transfer landscape changed markedly following the CJEU’s judgment in the Schrems II case. The decision invalidated the EU-US Privacy Shield and cast doubt over the effectiveness of the European Commission’s existing Standard Contractual Clauses (SCCs).

In the fallout from the decision, the European Commission issued a revised set of SCCs for organizations to utilize and the European Data Protection Board (EDPB) released their finalized guidance on supplementary measures for ensuring an EU level of data protection when transferring personal data.

As part of their guidance, the EDPB highlighted the need for organizations to perform a Transfer Impact Assessment (TIA) to evaluate the Article 46 transfer tool in light of the legal framework and practical application of the law in the destination country.

How OneTrust Helps:

In addition to this TIA checklist, OneTrust offers a range of solutions to help organizations navigate the new data transfers landscape including a comprehensive TIA template and TIA response automation. Request a demo today to learn more.