Data Protection Impact Assessments (DPIAs) were introduced and mandated by the General Data Protection Regulation (GDPR), which sets out specific requirements organisations must meet to become compliant.
Failure to comply can lead to a fine of up to €10 million or 2% of annual global turnover of the preceding financial year, whichever is greater.
This concise guide to DPIAs explains:
- Exactly what a DPIA is, and when you need to conduct one;
- The benefits of conducting DPIAs (besides GDPR compliance);
- How to conduct a DPIA; and
- When you need to consult the supervisory authority.