GDPR: Data Protection Impact Assessment

Home Products & Services Governance Risk Compliance NormageoS GDPR: Data Protection Impact Assessment

GDPR: Data Protection Impact Assessment

By combining the register of treatment activities with the DPIA module it is possible to carry out impact assessment sessions through the application of a risk management methodology that combines occurrence frequencies, impacts and effectiveness of the safety measures applied.

The model also takes into account:

  • Periodic pre-assessment sessions capable of indicating whether the treatment is “high risk” or not
  • Alert mechanisms capable of highlighting a change in the data of a treatment, i.e. the entry of a new treatment in the register
  • Reporting tools
  • The possibility to motivate each calculation component with special notes
  • Mechanisms of communication between the various actors of the evaluation session (evaluator, DPO, function manager, etc…)