A Data Protection Impact Assessment (DPIA) is an exercise designed to help organisations be compliant.
Do you have a project that processes the personal data of EU Citizens? You'll need to do a Data Protection Impact Assessment.
Beginning a new project like this, or dealing with exisitng ones, can be a mindfield since the GDPR legislation came into play. This assessment will point you to where you should 1) consider, 2) identify and 3) minimise the data protection risks.
We have put together this handy guide to help you stay compliant. In it you'll find things like:
- key steps
- when you are required to carry out a Data Protection Impact Assessment
- the elements of a project that will lead to a DIPA
- a template for you to follow with everything you need to make sure is included
A Data Protection Iimpact Assessment needs to be considered early in the life of any project that proposes to introduce any change to how, and what, personal data is processed. Ideally it would be carried out during the planning phase.
Our template will focus on the nature, scope, context an purpose of your project. You will also look at measures you can take to address privacy risks highlighted.
Click the link below to download.