When and How to Conduct a Data Protection Impact Assessment (DPIA)
A data protection impact assessment (DPIA) is mandatory in certain circumstances under the UK General Data Protection Regulation (GDPR). It is also a tool that can be of great value to organisations by assisting them meet their data protection obligations in identifying the risks associated with data processing and, specifically, those posed to data subjects.