Under the GDPR, a significant new change is a requirement for companies to conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities; it is the first regulation to mandate that private sector organizations conduct these assessments. While some companies have voluntarily conducted privacy impact assessments (PIAs) in the past, for many, these assessments are unfamiliar territory. Knowing the difference between the...
Read more