S17_Banner_300x250-COPY
MetaCompliance_Webcon
DPI17_Web_300x250-COPY
Automating Privacy Impact Assessments with the IAPP and AvePoint

Working for a global software company, the compliance team at AvePoint has an opportunity to work with privacy officers, CISOs and CIOs around the world and across many industries. Many of our customers believe that their compliance challenges are specific to their company, and subsequently have very little opportunity to collaborate with peers within their own companies—much less opportunities to collaborate with peers within or across industries.

With these isolated and limited views into best practices outside of the day-to-day world in which they operate, we believe that the International Association of Privacy Professionals (IAPP) provides a great opportunity to help guide them toward a “best practices” approach to compliance based on our global efforts. We are really thrilled to join forces with the IAPP to bring automation to one of the fundamental tenets of a good privacy program—the Privacy Impact Assessment (PIA) process—with the new AvePoint Privacy Impact Assessment (APIA) solution.

APIA assists customers in developing a programmatic approach to Privacy by Design. The solution allows privacy teams to develop a Service Level Agreement (SLA) with their colleagues in IT and the business. Rather than the cumbersome manuals often utilized when carrying out PIAs, APIA provides a system to implement a standardized and repeatable process with your colleagues in IT and the business to come to you as a project “begins” rather than when it is waiting for your sign off to go “live.”  This means your team can provide advice, guidance and thoroughly review every step of the process. Consider using APIA to allow your colleagues to request a PIA of the systems they are planning to build and deploy so you can provide them with a reasonable estimate and timeline. Your involvement early on will save them from having to make last-minute design changes or decisions with the clock to launch ticking.

APIA is an automated software solution that can be downloaded and run inside of your company’s firewall to automate the process of evaluating, assessing, and reporting on the privacy implications of their enterprise IT systems. APIA is distributed exclusively by IAPP to members at no extra cost and supported by AvePoint for the global privacy community. IAPP and AvePoint have also made available a helpful community site to enable the privacy community to contribute questions about APIA and PIAs in general as well as share best practices.

As any privacy officer knows, ensuring an organization’s data is sufficiently protected and in compliance with regulatory policies is an “all hands on deck” affair that can involve everyone from privacy to security to IT to the business. APIA brings all of these stakeholders together through innovative technology to become an important piece of your organization’s governance, risk and compliance program.

For more information and to download APIA today, please visit the IAPP Resource Center.

Written By

Dana Simberkoff, CIPP/US

4 Comments

If you want to comment on this post, you need to login.

  • Name Mar 7, 2014

    Thanks for sharing. Sounds interesting. Could I have a demo, by any chance? Thanks. Elena 
  • Dana Simberkoff Mar 8, 2014

    Hello Elena-thanks for your comment. We'd be happy to conduct a demo for you! You can also download the software from the IAPP Web site and review a video on the AvePoint APIA Web site. Please feel free to contact me for a demonstration. Kind Regards, Dana
  • Name Mar 12, 2014

    Hi Dana, two clarifications are IMHO needed:
    
    It would be great to specify somewhere what the technical requirements are to install the software, such as that it is not intended to be running on a workstation but likely on a server, what prerequisites are (such as IIS7...), etc. When the installation fails, there is a "Details" button but it doesn't provide any further information on why it failed.
    
    Also, the IAPP website mentions a "Free Download" but the EULA mentions a Demonstration Software. Is there an IAPP promotion or is it just pure advertising here?
    
    Anyway the idea looks good and I'm looking forward to test it out.
    
    Thanks!
    Stephane
  • Richard Apr 1, 2014

    What does the privacy risk score in the question templates do?
    
    Is there any calculation of risk that comes out?

Related

Board of Directors

See the esteemed group of leaders shaping the future of the IAPP.

Contact Us

Need someone to talk to? We’re here for you.

IAPP Staff

Looking for someone specific? Visit the staff directory.

Learn more about the IAPP»

Daily Dashboard

The day’s top stories from around the world

Privacy Perspectives

Where the real conversations in privacy happen

The Privacy Advisor

Original reporting and feature articles on the latest privacy developments

Privacy Tracker

Alerts and legal analysis of legislative trends

Privacy Tech

Exploring the technology of privacy

Canada Dashboard Digest

A roundup of the top Canadian privacy news

Europe Data Protection Digest

A roundup of the top European data protection news

Asia-Pacific Dashboard Digest

A roundup of the top privacy news from the Asia-Pacific region

Latin America Dashboard Digest

A roundup of the top privacy news from Latin America

IAPP Westin Research Center

Original works. Groundbreaking research. Emerging scholars.

Get more News »

IAPP Communities

Meet locally with privacy pros, dive deep into specialized topics or connect over common interests. Find your Community in KnowledgeNet Chapters, Sections and Affinity Groups.

IAPP Job Board

Looking for a new challenge, or need to hire your next privacy pro? The IAPP Job Board is the answer.

Join the Privacy List

Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.

Find a KnowledgeNet Chapter Near You

Talk privacy and network with local members at IAPP KnowledgeNet Chapter meetings, taking place worldwide.

Find more ways to Connect »

Find a Privacy Training Class

Two-day privacy training classes are held around the world. See the complete schedule now.

The Privacy Core™ Library Has Evolved

Privacy Core™ e-learning essentials just expanded to include seven new units for marketers. Keep your data safe and your staff in the know!

Online Privacy Training

Build your knowledge. The privacy know-how you need is just a click away.

Upcoming Web Conferences

See our list of upcoming web conferences. Just log on, listen in and learn!

Train Your Team

Get your team up to speed on privacy by bringing IAPP training to your organization.

Let’s Get You DPO Ready

There’s no better time to train than right now! We have all the resources you need to meet the challenges of the GDPR.

Learn more »

CIPP Certification

The global standard for the go-to person for privacy laws, regulations and frameworks

CIPM Certification

The first and only privacy certification for professionals who manage day-to-day operations

CIPT Certification

The industry benchmark for IT professionals worldwide to validate their knowledge of privacy requirements

FIP Designation

Recognizing the advanced knowledge and issue-spotting skills a privacy pro must attain in today’s complex world of data privacy.

Certify Your Staff

Find out how you can bring the world’s only globally recognized privacy certification to a group in your organization.

CIPP/E + CIPM = DPO

The IAPP’S CIPP/E and CIPM are the ANSI/ISO-accredited, industry-recognized combination for DPO readiness. Learn more today.

Learn more about IAPP certification »

Are You Ready for the GDPR?

Check out the IAPP's EU Data Protection Reform page for all the tools and resources you need.

IAPP-OneTrust PIA Platform

New U.S. Government Agency privacy impact assessments - free to IAPP members!

IAPP Communities

Meet locally with privacy pros, dive deep into specialized topics or connect over common interests. Find your Community in KnowledgeNet Chapters, Sections and Affinity Groups.

Privacy Vendor List

Find a privacy vendor to meet your needs with our filterable list of global service providers.

More Resources »

Europe Data Protection Intensive 2017

The Intensive is sold out! But cancellations do happen—so hurry and get on the wait list in case more seats become available.

Global Privacy Summit 2017

The world’s premier privacy conference returns with the sharpest minds, unparalleled programs and preeminent networking opportunities.

Canada Privacy Symposium 2017

The Symposium returns to Toronto this spring and registration has opened! Take advantage of Early Bird rates and join your fellow privacy pros for another stellar program.

The Privacy Bar Section Forum 2017

The Privacy Bar Section Forum is sold out! But you can still add your name to the wait list, and we'll keep in touch about your status. Good luck!

Asia Privacy Forum 2017

Call for Speakers open! Join the Forum in Singapore for exclusive networking and intensive education on data protection trends and challenges in the Asia Pacific region.

Privacy. Security. Risk. 2017

We're bringing the best of the best in privacy and infosecurity to sunny San Diego. Early registration for P.S.R. opens May 1.

Europe Data Protection Congress 2017

Call for Speakers open! The Congress is your source for European policy debate, multi-level strategic thinking and thought-provoking discussion. Submit a proposal by March 19.

Sponsor an Event

Increase visibility for your organization—check out sponsorship opportunities today.

More Conferences »

Become a Member

Start taking advantage of the many IAPP member benefits today

Corporate Members

See our list of high-profile corporate members—and find out why you should become one, too

Renew Your Membership

Don’t miss out for a minute—continue accessing your benefits

Join the IAPP»