Privacy Risk Management
About the Project
CIPL has been engaged in a project to explore the “risk-based approach to privacy” and privacy risk management. This work arises from and is closely related to CIPL’s pioneering work on accountability.
As the pace of technological change highlights the limitations of conventional thinking, a risk-based approach will improve the ability of privacy officers and businesses to take a structured and pragmatic approach to information management and privacy protection. By fully understanding both the benefits and the potential risks of harm associated with new products and services, organizations are better positioned to devise appropriate mitigations and controls that both reduce the risk to an acceptable level and retain the desired benefits of the intended data processing as much as possible.
The project will examine the following questions:
Download the project summary document.
Project White Papers and Articles
Paper 1: A Risk-based Approach to Privacy: Improving Effectiveness in Practice
June 19, 2014
Paper 2: The Role of Risk Management in Data Protection
December 1, 2014
Protecting Privacy In a World of Big Data: Paper 2: The Role of Risk Management
February 16, 2016
Risk, High Risk, Risk Assessments and Data Protection Impact Assessments under the GDPR
December 21, 2016
Project Workshops and Webinars