Data protection authorities (CNIL, BfDI, CNPD, etc.) conduct targeted checks.
Factual elements :
International transfers remain a major point of vigilance.
Impact assessments (AIPD) are often deemed insufficient.
Processing records frequently lack precision.
Sanctions can be high.
Practical observation (confirmed) : Organisations often delay updating their documentation, which increases the risk of non-compliance.
Recommendations :
Update GDPR records.
Conduct robust TIAs.
Strengthen AIPDs.
TMWP supports you in GDPR compliance without unnecessary burden.