When do I need to conduct a GDPR Data Protection Impact Assessment?
"Where a type of processing in particular using new technologies, and taking into account the nature, scope, context and purposes of the processing, is likely to result in a high risk to the rights and freedoms of natural persons."
"A systematic and extensive evaluation of personal aspects relating to natural persons which is based on automated processing, including profiling, and on which decisions are based that produce legal effects concerning the natural person or similarly significantly affect the natural person"
"Personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation"
This can be by means of cameras or other sensors gathering personal data.
Why should my Data Protection Impact Assessment be done by Aphaia?
Our clients typically buy more than one data protection service from us. For example, almost 80% of our outsourced Data Protection Officer clients have previously used our GDPR gap analysis & compliance roadmap services.
Almost 90% of our data protection clients provide mobile apps or web-based services.
We provide data protection support to clients offering healthcare, financial, recruitment, education, telecoms, real estate, entertainment, sharing economy, and e-commerce services.
Does your business require full GDPR adaptation?
Missed the 25th May 2018 deadline to adapt to GDPR? You can still do it to avoid huge fines and complaints to the data protection authorities. Get a quote!
...or is it just an initial compliance check for your startup?
Our 'mini data protection impact assessment' will give you the initial answer whether you startup is viable under European privacy laws - and what is required to make it compliant. Get a quote!
If you require full regular data protection support...
If you require regular support with privacy compliance, Data Protection Officer outsourcing may be the right product for you.
Using algorithms and machine learning to process personal data?
Let our partner Cristina Contero Almagro explain how your business is affected by GDPR and what steps you should take to ensure lawful profiling.
Here are some of our awesome clients you can ask…
- ideal for fresh startups
- check whether your business model can be compatible with GDPR
- privacy risk assessment
- proposal for mitigation measures
- notification support where required
- gap analysis
- compliance roadmap
- perks such as templates and notices