A Data Protection Impact Assessment enables clients to understand and manage personal data processing risks and demonstrate accountability (GDPR Article 5(2)).
A DPIA is a process which helps organisations to anticipate and address the likely privacy impact of projects and technologies, to identify privacy related issues, develop solutions, and ensure that such issues are addressed appropriately in a manner consistent with statutory obligations and corporate policies.
BH Consulting follow best practise guidelines for Data Protection Impact Assessments published by ENISA, the UK’s Information Commissioner’s Office, and by the Data Protection Commission in Ireland.
BH Consulting conduct initial data protection impact assessment workshops, to assess the risks associated with a new or existing data processing activity, system, or technology. Additionally, we provide subsequent recommendations on the appropriate controls to mitigate or minimise those risks.
We work on developing an action plan to manage the implementation of the given recommendations. Our experienced consultants also help to establish and document the tailored DPIA process for clients for future internal use.
This service can be carried out remotely.