In this fourth installment of the IAPP's "Top 10 Operational Responses to the GDPR" series, IAPP Westin Fellow Müge Fazlioglu, CIPP/US, tackles data protection impact assessments and the issues of privacy by design and default. While many in the privacy industry are using DPIA, PIA, and even risk assessment interchangeably, this article for The Privacy Advisor advises privacy professionals to think of them as separate entities, regarding the DPIA, specifically, as an exercise with certain legal obligations and definitions. Privacy by design and default, meanwhile, are relatively simple to explain but much more difficult to exercise in practice.
Full Story
Comments
If you want to comment on this post, you need to login.