PRIMARY CONTACTS:
Eric M. Wright CPA, CITP
Eric M. Fair CISA, CDPSE, CBCLA
A Data Protection Impact Assessment (DPIA) is a process to help identify and minimize data protection risks to an organization. To assess the level of risk, you must consider both the likelihood and the severity of any impact on data subjects.
Whenever processing is likely to result in high-risk to the rights and freedoms of individuals. Required at least in the following cases, under GDPR:
It is also good practice to perform a DPIA as a baseline or for any major initiative which requires the processing of personal data.
Business Process and Data Flow
A critical component to understanding how an organization’s data (oftentimes consumer data) travels throughout its lifecycle is to develop business processes and data flow diagrams. Learn More
Data Privacy Control Assessment
Regardless of whether your data privacy program was recently established or tenured, it’s important to assess its ongoing effectiveness in today’s ever-evolving technological world. Learn More
NIST Privacy Framework Compliance
The NIST Privacy Framework is intended to be leveraged as a foundation to help organizations identify and manage privacy risk to build innovative products and services while protecting individuals’ privacy. Learn More
Privacy by Design
Our approach to Privacy by Design ensures that privacy and security controls are aligned with an organization’s tolerance for risk, its compliance with regulations, and its commitment to building a sustainable privacy-minded culture.
Privacy Regulations and Compliance
Prepare your organization for compliance with data privacy regulations including GDPR, CPRA, CCPA, New York SHIELD Act, GLBA and HIPAA. Learn More
At Schneider Downs, our IT Risk Advisory Practice has a team of professionals who specialize in data privacy. Our team not only understands the evolving data privacy regulations but also the technologies that allow for opportunities to enable controls in the effort of reducing and protecting the data footprint and ongoing risks of non-compliance.
Learn more about our Data Privacy Services or contact us for more information.
Our Thoughts On
Let’s play a game! Two truths and a lie about Cybersecurity Governance.In support of Cybersecurity Awareness Month, we are examining…
Read More >Let’s play a game! Two truths and a lie about Cyber Insurance.In support of Cybersecurity Awareness Month, we are examining…
Read More >Deepfake-driven fraud remains a top concern for CISOs and security professionals, as the frequency and complexity of these scams continue…
Read More >72% of U.S. senior executives have been targeted at least once by a cyberattack in the last 18 months according…
Read More >The National Public Data (NPD) breach is emerging as 2024’s defining cybersecurity incident, but what sets this breach apart? After…
Read More >Receive all the latest insights and industry tips.
Schneider Downs is a Top 60 independent Certified Public Accounting (CPA) firm providing accounting, tax, audit and business advisory services to public and private companies, not-for-profit organizations and global companies. We also offer Internal Audit; Technology Consulting; Software Solutions; Personal Financial Services; Retirement Plan Solutions and Corporate Finance Services. Schneider Downs is the 13th largest accounting firm in the Mid-Atlantic region and serves individuals and companies in Pennsylvania (PA), Ohio (OH), West Virginia (WV), New York (NY), Maryland (MD), and additional states in the United States with offices in Pittsburgh, PA, Columbus, OH, and McLean, VA.
© 2024 Schneider Downs & Co., Inc. Maryland license number 35239.
Every moment counts. For urgent requests, contact the Schneider Downs digital forensics and incident response team at 1-800-993-8937. For all other requests, please complete the form below.
"*" indicates required fields