Do you have a current DPIA?
DPIAs are already required to comply with Europe’s GDPR. GDPR Article 35 requires them for all data processing. And you don’t need us to remind you of the many GDPR fines that have been levied, ranging from millions to nearly $850 million.
That’s why we designed the ZenPrivata DPIA Factory™ to easily guide you through the DPIA process and lifecycle. Think of it as the “easy button” for DPIAs.
More State Laws are requiring DPIAs starting in January, which is a not far in the future
Virginia requires DPIAs, and goes into effect on January 1, 2023.
California’s CCPA has been updated, and its new CPRA requires DPIAs, and goes into effect on January 1, 2023.
Not far behind, Colorado’s CPA also requires DPIAs, and goes into effect on July 1, 2023.
What is a DPIA?
A Data Protection Impact Assessment (DPIA) is an assessment of the impact that your data collection and processing is likely to have on the privacy rights of individuals. The idea is to determine what your goal in collecting personal information is, ensure the data you’re collecting is necessary, accomplishes the end-goal, and is proportionate to the goal. For example, you shouldn’t be collecting massive amounts of personal information to accomplish only a relatively minor, unimportant goal. And finally, to minimize the personal information collected to only that which is required to accomplish the task.
When do you have to conduct a DPIA?
A DPIA is required for each of your processing activities that involves personal data. After that, a new DPIA is required any time there is a change in processing that materially increases the risk to consumers.
Are you unsure how to start a DPIA? Then look no further than the new ZenPrivata DPIA Factory™ for your DPIA needs. Do you have DPIAs floating around in word documents, paper documents, or spreadsheets? Our DPIA Factory can help you manage them and makes your DPIAs easy to complete, update, manage and easily demonstrate due diligence to auditors and management.