PrivacyPerfect Schrems II Solution - Transfer Impact Assessments
The PrivacyPerfect Transfer Impact Assessments module, developed in cooperation with international law firm DLA Piper, offers a quick, integrated, automated, and easy way to check and assess whether your data importer has an adequate level of protection of personal data.
PrivacyPerfect assists privacy professionals in remaining compliant with the GDPR after the Schrems II ruling. With its Transfer Impact Assessment Solution, which is designed and implemented together with one of the most renowned global law firms and offers built-in assessments of privacy legislation for over 60 different countries. The assessments cover not only the legislation of each country, but also enforcement levels, privacy rights, and more.
Through the built-in knowledge, by providing the relevant local legislation, PrivacyPerfect is able to automatically identify key risks and provide an indication whether the data is safe to be transferred in accordance with the GDPR.
The PrivacyPerfect Transfer Impact Assessment Solution is based on the most up to date information and includes various smart automation:
Links between Standard Contractual Clauses (SCC) & TIAs
When you have to transfer personal data to a country with an insufficient level of data protection, PrivacyPerfect provides you the option to select a Standard Contractual Clause (SCC). When you select a SCC, the solution will automatically identify the need for a TIA. By linking these workflows, the user will not forget to perform a TIA when their organisation transfers personal data to a country with an insufficient level of data protection and therefore transfers the personal data in a GDPR compliant manner.
Risks automatically identified
By using PrivacyPerfect's TIA Solution, potential risks can automatically be identified. The user will receive an indication whether the data importer offers a sufficient level of data protection so you can safely transfer the personal data in a compliant (GDPR) manner.
Step by step process
The methodology involves a five step process with an embedded scoring mode similar to the process referenced in the EDPB Recommendations. The methodology is intended to be used to generate assessments which provide an accurate, consistent, auditable, and defensible basis to support a decision as to whether or not, on a case-by-case basis, sufficient safeguards are in place to be able to proceed with a proposed transfer.
Centralised privacy administration
Keep your TIAs centralised along with the rest of your privacy records. Easily keep track of which processing activity a TIA is performed or whether it still needs to be done, along with other assessments (e.g. DPIAs or LIAs), based on our automated risk identification. Easily start a new TIA on an existing processing activity, where all relevant information on the processing is automatically filled into the TIA, so you can focus on the important work, saving time and avoiding mistakes. This way you can make sure to be on track with your privacy compliance from start to end.