TrustArc Blog

EU GDPR Article 35 – Data Protection Impact Assessment (DPIA), Part II

October 17, 2017

EU General Data Protection Regulation (GDPR)

In Part I of this two-part blog series we provided an introduction and background to EU GDPR Article 35 – Data protection impact assessment (DPIA). Now, in Part II we will share some best practices and helpful tips on implementing a DPIA program. These tips were shared by Beth Sipula, Senior Privacy Consultant at TrustArc and Alexia Maas, SVP & General Counsel at Volvo Financial Services in our Privacy Insight Series webinar, “Building Your DPIA/PIA Program: Tips & Case Studies.” Part II: DPIA Program Essential Elements The six essential elements that make up a sustainable DPIA program are: integrated governance, … Continue reading EU GDPR Article 35 – Data Protection Impact Assessment (DPIA), Part II

EU GDPR Article 35 – Data Protection Impact Assessment (DPIA), Part I

October 10, 2017

EU General Data Protection Regulation (GDPR)

In Part I of this two-part blog series we will give an introduction to EU GDPR Article 35 – Data Protection Impact Assessment (DPIA) and some best practices for conducting them. In Part II we will summarize the six essential elements of a DPIA program. Part I: Introduction & Background As the GDPR compliance deadline of May 25, 2018 grows closer, organizations should have a documented process for conducting PIAs and DPIAs. But before building a DPIA program, it is useful to review what a DPIA is and when it should be conducted. Data Protection Impact Assessment (DPIA) A DPIA … Continue reading EU GDPR Article 35 – Data Protection Impact Assessment (DPIA), Part I

Subscribe to Blog