O5.7 Oversee the implementation of privacy and data protection impact assessments prior roll-out

Principle

O5 Ensure data protection during use

Risks

SV3 Weak institutions,

RS1 Privacy vulnerability

Life Cycle Stage

L2 - Strategy and Design

Practices

• Monitor and enforce the requirement for privacy and data protection impact assessments, ensuring they are conducted thoroughly before the rollout of DPI systems

• Provide clear guidelines on how these assessments should be performed, ensuring consistency and adherence to best practices.

• Evaluate the results of these assessments and ensure that any identified risks are addressed in accordance with legislative standards before granting approval for the DPI rollout.