A Process for Data Protection Impact Assessment Under the European General Data Protection Regulation

This paper written by Felix Bieker, Michael Friedewald, Marit Hansen, Hannah Obersteller, and Martin Rost examines the data protection impact assessment provisions in the GDPR and examines ways for their successful implementation. It proposes a process that operationalizes established requirements ensuring the appropriate attention to fundamental rights as warranted by the GDPR, incorporates the legislation’s new requirements and can be adapted to suit the controller’s needs.
Read Now (PDF 1.88MB)