Skip to Main content Skip to Navigation
New interface
Conference papers

Tool-Assisted Risk Analysis for Data Protection Impact Assessment

Abstract : Unlike the classical risk analysis that protects the assets of the company in question, the GDPR protects data subject’s rights and freedoms, that is, the right to data protection and the right to have full control and knowledge about data processing concerning them. The GDPR articulates Data Protection Impact Assessment (DPIA) in article 35. DPIA is a risk-based process to enhance and demonstrate compliance with these requirements. We propose a methodology to conduct the DPIA in three steps and provide a supporting tool. In this paper, we particularly elaborate on risk analysis as a step of this methodology. The provided tool assists controllers to facilitate data subject’s rights and freedoms. The assistance that our tool provides differentiates our work from the existing ones.
Document type :
Conference papers
Complete list of metadata
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, October 14, 2021 - 5:48:06 PM
Last modification on : Wednesday, November 3, 2021 - 6:55:36 AM
Long-term archiving on: : Saturday, January 15, 2022 - 7:55:32 PM


 Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed until : 2023-01-01

Please log in to resquest access to the document


Distributed under a Creative Commons Attribution 4.0 International License



Salimeh Dashti, Silvio Ranise. Tool-Assisted Risk Analysis for Data Protection Impact Assessment. 14th IFIP International Summer School on Privacy and Identity Management (Privacy and Identity), Aug 2019, Windisch, Switzerland. pp.308-324, ⟨10.1007/978-3-030-42504-3_20⟩. ⟨hal-03378957⟩



Record views