Our previous update provided a reminder of why it’s important to ensure you’re assessing the impact of new tech or contracts and what’s involved – here’s how to ensure data impact assessments are a prominent part of your processing practices.
Record keeping – The ICO (Information Commissioners Office) like evidence. If you’re on the unfortunate side of a data breach and ICO investigation, providing impact assessment records for new tech or processing practices will help you to avoid fines.
Training – ensuring your teams know how, when and why impact assessments are required embedding them as part of your data protection culture and making sure they’re being used.
Procurement processes – make sure you have a process in place so that the colleague ultimately signing off on the new tech investment or contract can check that an appropriate impact assessment has been done and actions followed up.
We can support you with the tools and training to ensure you’re creating and using robust data protection practices – get in touch to find out more.