Data Protection Impact Assessment

Data Protection Impact Assessment (DPIA) is a requirement of GDPR Article 35 that compels businesses to assess the risk and impact of their processing activities.

While the CCPA does not require businesses to conduct a DPIA, the California Consumer Privacy Act (CPRA) under Section 1798.185(a)(15) requires businesses to perform an assessment on processing activities that may expose personal data to significant risks.

Sensitive data discovery and classification is a process used to identify and categorize sensitive or confidential information within an organization's digital assets.

Learn More

Passive Data Collection

Any data collection technique that gathers information automatically, with or without the end user’s knowledge.

Learn More

Data Protection Impact Assessment

Related Terms

5 minutes is all it takes