Data Protection Impact Assessment (DPIA) Checklist

2 Min Read
There are no headings in this document.
Data Protection Impact Assessment (DPIA) Checklist

Data Protection Impact Assessment (DPIA) identifies and minimise risks from data processing.  Help you analyse, identify and minimise any data protection risks of a project. 

This is part of your accountability obligations under the GDPR.  DPIA should help guide you to determine whether or not the level of risk is acceptable and make sure it is minimised.

What kind of “risk”?There is no explicit definition of ‘risk’ in the GDPR. 

Assessing the level of risk involves looking at both the likelihood and the severity of any potential harm and “risks to the rights and freedoms of natural persons”.

There are other website legal pages you need to consider before website launch.

Ready to dive in?
Start Your Free Trial Today

Data Protection Impact Assessment (DPIA) Checklist

Minimise any data protection risks.

What is the nature, scope, context and purpose of the data processing?

Understand and Document

Understand and document processing activities and identify risk.


Consult individuals, and other relevant parties.

Data Protect Officer

Ask for advice


Is data processing necessary? Proportioned to purpose. How will ensure compliance with data protection principles?

Objective Assessment

Likelihood or severity of risk to individuals.


What measures can be put in place to eliminate or reduce high risk.


Document decision making process including difference opinions


Implement the measures identified and integrated into project plan.

Review DPIA

Review and revisit when necessary.

Additional Information:

Justice and Consumers EU – Guidelines on Data Protection Impact Assessment (DPIA) and determining whether the processing is “likely to result in a high risk” for the purposes of Regulation 2016/679

European Union Law – Protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive

Frequently asked questions
Looking for more info? Here are some things we're commonly asked
  • Why is a Checklist Important?

    Does the running of your business include several repetitive tasks? If there’s no guidance or procedure in place, it’s possible for some of the steps in the process to get forgotten. This is why checklists are important.

    People get distracted, and when something gets forgotten, it’s much harder to recover than if they’d completed the task right in the first place.

    Guidance every step of the way makes sure something is completed perfectly every time.

    Read More: Why is a Checklist Important?

  • Checklist To Reduce Mistakes

    We all carry enormous knowledge and experience that we want to apply effectively, but we are all prone to make mistakes. There’s only so much we can store in our heads without forgetting something. How to maximise our use of knowledge?

    The simple answer to this problem is to use checklists.

    Read More:  Power Of A Simple Checklist To Reduce Mistakes

  • What types of checklist are there?

    How many types of checklists are there? Two. What are the two types of checklists? Read-Do and Do-Confirm checklists are about how you use checklists.

    Read More: Types of checklist: What are the two most powerful Checklist Types?

  • Checklist Software

    A checklist is a way to document each step needed to complete a task. A detailed set of instructions, a guide of how something is done. 

    Checklist software allows you to document every step of a process to be used over and over again.

    Read More: Checklist Software

Yep, like every other website we also use
delicious cookies to track you.