A Transfer Impact Assessment (TIA) evaluates whether personal data transferred outside the EU/EEA or UK receives essentially equivalent protection, as Schrems II requires. This tool runs the assessment in your browser: destinations, mechanisms (SCCs, IDTA, adequacy) and government-access risk — with connected data-protection questions activating automatically.
Since Schrems II (CJEU C-311/18), exporters relying on Standard Contractual Clauses or other Article 46 safeguards must assess whether the destination country offers essentially equivalent protection, and apply supplementary measures where it does not. A TIA documents that analysis per destination. Transfers to an adequate country do not need one.
Each destination's adequacy status, the transfer mechanism in use, the destination's laws on government access to data (e.g. FISA 702, the CLOUD Act), the practical risk to the specific data, and any supplementary technical, contractual or organisational measures. It is a structured drafting aid, not legal advice.
The assessment runs entirely in your browser and the full results are shown on-page, free, with no login or email required. Your answers are stored only in this browser. A free account adds saving, sharing and clean exports; free exports carry a small "Prepared with Raksa" mark.
Nothing leaves your browser unless you choose it. Answers autosave to this browser's local storage. If you use an optional AI assist, the relevant answers are sent to generate that one suggestion and are not stored on our servers or used for training.
Raksa runs DPIA, transfer, AI-risk and vendor assessments off a single common nucleus, so one intake feeds them all and teams never answer the same question twice. Explore the other assessments or the platform.