SPRING DISCOUNT
Get 30% off on toolkits, course exams, and books.
Limited-time offer – ends May 26, 2022
Use promo code:
SPRING30

Expert Advice Community

Guest

Addressing Impact Assessment (DPIA) requirement

  Quote
Guest
Guest user Created:   Feb 10, 2022 Last commented:   Feb 14, 2022

Addressing Impact Assessment (DPIA) requirement

Does risk assessment and treatment according to ISO 27001 a Data Protection address Impact Assessment (DPIA) requirement? what is the difference between these two?
0 0

Assign topic to the user

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Tudor Galos Feb 14, 2022

According to article 35 in GDPR, “Data protection impact assessment”, DPIA is performed for personal data processing operations “likely to result in a high risk to the rights and freedoms of natural persons”. In the case of ISO, the risks that are documented and treated are related to the organizational information,while in the case of DPIA the risks are related to the rights and freedoms of natural persons. There are really good templates that can help you address these risk assessments in our EU GDPR & ISO 27001 INTEGRATED DOCUMENTATION TOOLKIT.

Please find more details here:

Tudor Galos
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Feb 10, 2022

Feb 14, 2022