IAPP-OneTrust PIA & Data Mapping Platform



The IAPP and OneTrust have partnered to provide a free online platform to help organizations operationalize their privacy programs for GDPR compliance.

The IAPP-OneTrust tool automates accountability through readiness and privacy impact assessments (PIAs or DPIAs) with questionnaire and risk-tracking workflows, as well as builds and maintains data flows and inventories to help meet the record-keeping obligations of Article 30. 

Get Started Now

The IAPP-OneTrust PIA & Data Mapping Platform Allows You To:

  • Choose from pre-defined templates for PIA, DPIA, PbD, Thresholds, Vendors Assessments, Article 30, etc.
  • Leverage GDPR Readiness Assessment — ISO 27001 Annotated (NEW!)
  • Modify existing templates or create your own custom questionnaires
  • Distribute assessments to internal and external parties
  • Populate the data flow inventory with applications and processing activities
  • Identify, track and mitigate risks through automated workflows
  • Generate appropriate record keeping reports for regulatory requirements


Featured Products:

Assessment Automation (PIA/DPIA)

Tailor and distribute assessments, review gaps, track mitigating activities, and generate appropriate record keeping reports

Data Inventory & Mapping

Maintain and update data flows, applications, and processing activities to meet Article 30 record keeping obligations


Also Included

Consent Management

Manage user consent and preferences with adaptable settings for various consent standards

Website Tracker Scanning

Conduct a privacy scan of your website to identify and categorize tracking technologies

Data Subject Rights Portal (DSAR)

Capture data subject requests, manage workflows to fulfill, handle responses securely and consistently, and maintain records of fulfilling requests