Article 35 of the GDPR and the Data Protection Impact Assessment (DPIA)

Article 35 of the General Data Protection Regulation (GDPR) states that a Data Protection Impact Assessment (DPIA) is required when the “processing of data is likely to result in a high risk to the rights and freedoms of natural persons.” DPIAs can help an organization to assess privacy risks with the processing of data.

To learn more about Data Protection Impact Assessments, an article by Janet Cord entitled, “Data Protection Impact Assessment,” is available in our Education Center.