France's data protection authority, the Commission nationale de l’informatique et des libertés, published its recommendations for companies' data logging measures. For general logging practices, the CNIL recommends measures include traceability, data minimization and risk mitigation principles. The regulator also offered more targeted suggestions for specific companies. The recommendations reflect the CNIL's aim to strike a balance between security, surveillance and risks.