When do I need to conduct a GDPR Data Protection Impact Assessment?
"Where a type of processing in particular using new technologies, and taking into account the nature, scope, context and purposes of the processing, is likely to result in a high risk to the rights and freedoms of natural persons."
"A systematic and extensive evaluation of personal aspects relating to natural persons which is based on automated processing, including profiling, and on which decisions are based that produce legal effects concerning the natural person or similarly significantly affect the natural person"
"Personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation"
This can be by means of cameras or other sensors gathering personal data.
Why should my Data Protection Impact Assessment be done by Aphaia?
Our clients typically buy more than one data protection service from us. For example, almost 80% of our outsourced Data Protection Officer clients have previously used our GDPR gap analysis & compliance roadmap services.
Almost 90% of our data protection clients provide mobile apps or web-based services.
We provide data protection support to clients offering healthcare, financial, recruitment, education, telecoms, real estate, entertainment, sharing economy, and e-commerce services.
Is your business still lagging behind when it comes to GDPR?
Missed the 25th May 2018 deadline? You can still sort things out now to avoid huge fines and complaints. Get your free quote today!
...or is it just an initial compliance check your start-up is looking for?
Our 'mini data protection impact assessment' will confirm whether your start-up meets the necessary criteria under European privacy laws. If you’re not compliant, we’ll take you to where you need to be. Get your free quote now!
If you require full regular data protection support...
If you require regular support with privacy compliance, Data Protection Officer outsourcing may be the right service for you.
Using algorithms and machine learning to process personal data?
Let our Partner, Cristina Contero Almagro, explain how your business is affected by GDPR and what steps you should take to ensure lawful profiling.
Here are some of our awesome clients you can ask…
- ideal for new start-ups
- check whether your business model is compatible with GDPR
- privacy risk assessment
- proposal for mitigation measures
- notification support where required
- gap analysis
- compliance roadmap
- perks such as templates and notices