GDPR Data Protection Impact Assessments
What Does It Mean To Me?
By now you are surely aware of the European Union General Data Protection Regulation (GDPR) that goes into effect on 25 May 2018. If your company does business with just one EU citizen or in one EU location, your enterprise is subject to this new regulation—no matter where it is headquartered or who else you do business with.
One of the key compliance requirements for GDPR is to conduct data protection impact assessments (DPIAs) to identify and reduce the data protection risk within projects and systems, and thereby reduce the likelihood of privacy harms to affected EU citizens. To help with this task, ISACA has created guidance and tools you can use to navigate the DPIA requirements. What Does It Mean To Me? GDPR Data Protection Impact Assessments takes a deep dive into this critical component of the GDPR regulation and the process of completing these assessments.
The paper starts by helping you determine whether your enterprise is affected by GDPR. Then it details the process, step-by-step, of how to complete a DPIA. It covers the key questions you must ask and how matching these GDPR requirements to ISACA Privacy Principles can produce better organizational outcomes.
In addition, ISACA has also developed an Excel spreadsheet tool for completing your DPIAs, GDPR Data Protection Impact Assessment Template. It will ease the process of compliance and serve as a record-keeping repository for your GDPR efforts.
Ensure your compliance with GDPR—get your copy of both the paper and template today!
Related Items:
Data Protection Impact Assessment Tool—English
Data Protection Impact Assessment Tool—Spanish
The Seven Categories of Privacy That Every Enterprise Must Address
GDPR: What Does It Mean For Your Enterprise?
Key Tips & Takeaways for GDPR Implementation Using COBIT 5
Connecting Privacy Activities With COBIT 5 Principles
Privacy Behaviors at the Individual and Organizational Level