The Risk-Based Approach in the GDPR: Interpretation and Implications
This white paper examines the EU General Data Protection Regulation's risk-based approach to data protection.
Published: 29 March 2016
Throughout the GDPR, organizations that control the processing of personal data are encouraged to implement protective measures corresponding to the level of risk of their data processing activities.
Although the GDPR is silent on how organizations should assess and quantify risk, certain trends emerge from the sections where risk does appear that will guide organizations in implementing a risk-based approach.
This white paper examines the EU General Data Protection Regulation's risk-based approach to data protection.
This content is eligible for Continuing Professional Education credits. Please self-submit according to CPE policy guidelines.
The Risk-Based Approach in the GDPR: Interpretation and Implications
This white paper examines the EU General Data Protection Regulation's risk-based approach to data protection.
Published: 29 March 2016
Contributors:
Gabe Maldoff
Associate, Goodwin Procter
Throughout the GDPR, organizations that control the processing of personal data are encouraged to implement protective measures corresponding to the level of risk of their data processing activities.
Although the GDPR is silent on how organizations should assess and quantify risk, certain trends emerge from the sections where risk does appear that will guide organizations in implementing a risk-based approach.
This white paper examines the EU General Data Protection Regulation's risk-based approach to data protection.
This content is eligible for Continuing Professional Education credits. Please self-submit according to CPE policy guidelines.
Tags:
Related resources
Global AI Governance Law and Policy: Jurisdiction Overviews
US State Privacy Legislation Tracker
Organizational Digital Governance Report 2025
US State Comprehensive Privacy Laws Report
