On 9 July 2020, the French DPA (CNIL) published Guidelines on best practices for controllers and processors, following a series of inspections carried out by the CNIL, as part of the priority inspection themes for 2019.
Among other aspects, the CNIL draws recommendations on ensuring data security and on the processor’s responsibility to help the controller with the exercise of data subject’s rights.
The Guidelines are available here (only in French).