Risk, High Risk, Risk Assessments and Data Protection Impact Assessments under the GDPR

This paper from CIPL is structured in two parts. Part 1 addresses the risk-based approach to data protection and privacy in general and identifies and explains the GDPR provisions on risk, high risk, risk assessments and DPIAs. Part 2 assesses the practical impacts and challenges associated with implementing these provisions in practice and makes suggestions on how these challenges can be resolved and where further guidance may be helpful.
Read Now (PDF 591KB)