What does a DPIA do?

What does a DPIA do?

The DPIA will:

• Describe the nature, scope, context and purposes of the data processing
• Involve our data processors to help us understand and document their processing activities and identify any associated risks.
• Consider how best to consult individuals (or their representatives) and other relevant stakeholders.
• Seek the advice of our Data Protection Officer (where legally required)
• Check that the processing is necessary and proportionate to our purposes and describe how we will ensure data protection compliance.
• Provide an objective assessment of the likelihood and severity of any risks to individuals’ rights and interests.
• Identify measures we can put in place to eliminate or reduce high risks.
• Record the outcome of the DPIA, including any difference of opinion with our Data Protection Officer or individuals consulted.