Privacy Impact Assessment according to the GDPR and WP 29 Guidelines
The European Data Protection Regulation establishes a single legislation in all 28 EU countries. The regulation introduces an important aspect of data protection (Art. 35): the assessment of the impact of processing where data protection measures are violated. This entails not only a formal but a concrete fulfilment of the DPIA on data protection: carrying out a proper DPIA enables data controllers to identify the most appropriate measures to reduce and minimise risks in terms of impact on data subjects and to adopt, taking into account the state of the art, any necessary technical, legal and organisational measures.
Provide the necessary knowledge to address and draft an adequate DPIA by analysing the documentation provided by the European guarantors and the articles of the GDPR
Personnel Managers, ICT Managers and employees, Legal Department, System Administrators, Marketing Department Managers, Data Controllers and Processors, Consultants, Data Processors operating in the field of data processing in the Company and in the Public Administration. In general, all those who have appointed an External Data Processor.
Lecturer: Angelo Modica
Programme - 4 lessons of 2 hours each
Dates: 01, 02, 03, 04 July 2024
Timetable: 11 a.m. to 1 p.m.
- The regulatory framework
- Risk-based approach
- Identification of risks to the rights and freedoms of natural persons
- Risk analysis
- Risk management measures
- The relationship between risk analysis and impact assessment
- Guidelines on Data Protection Impact Assessment (DPIA)
- Example of a data protection impact assessment (DPIA) using CNIL software
