The objective of a PIA is to perform an initial self-assessment of what business modules may involve privacy data handling and readiness for GDPR compliance. the data privacy impact analysis is required by the GDPR article 35. It's highly suggested to apply a PIA assessment template for all project team to follow, or you may customize the templates for your organization. The key deliverables of the PIA are a list of privacy data attributes and data flow. A typical PIA assessment report may include the following agenda.
- Introduction
- The scope of the PIA
- Data Attributes Identification
- Data Flow Assessment
- Planned actions and existing gap
- Results of data protection impact assessment
The following sections show ...