EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Data Protection Impact Assessment Guidelines In The Context Of The General Data Protection Regulation

Bodo Grütter and Bettina Schneider
Additional contact information
Bodo Grütter: University of Applied Sciences and Arts Northwestern Switzerland, FHNW, Switzerland
Bettina Schneider: University of Applied Sciences and Arts Northwestern Switzerland, FHNW, Switzerland

from ToKnowPress

Abstract: The European General Data Protection Regulation (EU GDPR) requires companies to carry out a socalled Data Protection Impact Assessment (DPIA) if the processing of personal data is likely to result in a high risk to the rights and freedoms of individuals. But how can it be determined whether a risk should be considered ‘high’ and thus makes a DPIA necessary? Furthermore, if a DPIA is required, how exactly should this be performed? In response to these questions, various guidelines concerning DPIA have been published. The aim of this paper is to give those affected by the new Data Protection law an insight into three current DPIA guidelines and to support them in implementing a GDPR-compliant impact assessment. To this end, each of the selected guidelines will be described, and evaluated in terms of GDPR compliance and DPIA feasibility, i.e. on the one hand, whether the guideline complies with the relevant GDPR articles, and on the other hand what tools are provided to facilitate the operational execution of a DPIA. The study results in an overall evaluation matrix, which shows that all three guidelines have different strengths and propose differing methods for DPIA implementation.

Keywords: Data Protection Impact Assessment; Privacy Impact Assessment; General Data Protection Regulation; risk to rights and freedoms; data protection; EU law (search for similar items in EconPapers)
Date: 2019
References: Add references at CitEc
Citations: View citations in EconPapers (1)

Downloads: (external link)
http://www.toknowpress.net/ISBN/978-961-6914-25-3/papers/ML19-056.pdf full text (application/pdf)
http://www.toknowpress.net/ISBN/978-961-6914-25-3/MakeLearn2019.pdf Conference Programme (application/pdf)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:tkp:mklp19:261-270

Access Statistics for this chapter

More chapters in Thriving on Future Education, Industry, Business and Society; Proceedings of the MakeLearn and TIIM International Conference 2019 from ToKnowPress
Bibliographic data for series maintained by Miha Jezovnik ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-20
Handle: RePEc:tkp:mklp19:261-270