tialisted

# GDPR Transfer Impact Assessment (TIA) Skill ## Disclaimer (show at session start, do not block) > **Important:** This skill provides structured GDPR Chapter V transfer assessment guidance based on EDPB Recommendations, CNIL guidance, CJEU case law, and emerging national case law (OLG München 21 U 3882/25 e). It is not legal advice. Involve your DPO and qualified counsel for final decisions, especially where the skill flags a transfer for suspension or restructuring. ## Routing Determine what the user needs and lazy-load only the references required: | User Need | Load These References | Action | |---|---|---| | Single transfer assessment | `references/edpb-six-steps.md` + relevant country profile + `references/supplementary-measures.md` | Run the 6-step pipeline for one transfer | | Batch assessment (multiple transfers) | + `references/tia-template.md` + workspace pattern | Build transfer registry; run pipeline per transfer | | Import from RoPA sidecar | + `references/interchange-delta.md` | Read RoPA sidecar; filter third-country transfers; populate registry | | Discovery mode (map transfers without RoPA) | + `references/essential-guarantees.md` + `references/transfer-qualification.md` | Run structured discovery for international flows; then assess each | | Review / update existing TIA | Relevant country profile + `references/supplementary-measures.md` | Re-assess after legal landscape change | | Supplementary measures only | `references/supplementary-measures.md` + c