Data Protection Impact Assessment — Technology Wiki

Overview

A process required under GDPR for assessing the risks of personal data processing activities and identifying measures to mitigate those risks before implementation.

Cross-References(1)

Governance, Risk & Compliance

GDPR

Related in Privacy & Data Protection

GDPR

General Data Protection Regulation — EU legislation governing the collection and processing of personal data of EU residents.

CCPA

California Consumer Privacy Act — a US state law enhancing privacy rights and consumer protection for California residents.

Privacy by Design

An approach to systems engineering that takes privacy into account throughout the entire engineering process.

More in Governance, Risk & Compliance

Digital Operational Resilience

Governance

An organisation's ability to build, assure, and review its technological integrity to ensure it can withstand all types of ICT-related disruptions and threats.

Governance

The system of policies, rules, and processes by which activities are directed, controlled, and managed.

Data Sovereignty

Governance

The concept that data is subject to the laws and governance structures of the country where it is collected or processed.

Vendor Risk Assessment

Risk Management

Evaluating the potential risks of engaging with a vendor including security, financial, and operational concerns.

Business Ethics

Governance

The application of ethical principles and moral standards to business activities, decisions, and relationships.

Internal Audit

Governance

An independent assurance function that evaluates the effectiveness of an organisation's internal controls and governance.

Right to be Forgotten

Governance

A legal concept giving individuals the right to request deletion of their personal data from organisations' records.

Incident Reporting

Compliance & Regulation

The formal process of documenting and communicating security incidents, breaches, or compliance violations.