The CNIL has released a self-assessment tool to assist groups in implementing Binding Corporate Rules (BCR), which are a data protection policy within the group, allowing related entities to transfer personal data outside the EU. This tool helps assess the project's maturity level in line with the BCR frameworks by the European Data Protection Board (EDPB), with a compliance score and action plan provided after completion. The project can be refined based on the action plan before submission to CNIL, as the BCR implementation involves a multi-step approval process at both the national and European levels
CNIL offers resources from project preparation to approval procedures, emphasizing the importance of testing the project level before submission for a smoother approval process involving the competent authority and EDPB review. https://www.cnil.fr/fr/regles-dentreprises-contraignantes-bcr-la-cnil-publie-un-outil-dauto-evaluation