Page 1

[Note: to choose a different table layout, click in the table, select the Design menu ribbon and choose a table style]

Personal Data As... (blank)

Risk Owner (blank)

Risk Level Calculated

Data Protection Impact Assessment Workbook Note: Not all columns are shown

Risk Description Ref.

Personal Data Asset

Risk Scenario

A description of what could happen to affect the personal data involved. This could Risk Owner typically affect the Existing Controls confidentiality, the integrity or the availability of the personal data. Brief examples could be "data is stolen by unauthorised person (hacker)" or "data is encrypted by ransomware". Include as full a description as possible

Select the approach to

Pre-Treatment Likelihood

Likelihood Rationale

Impact

Treatment be taken to the Impact Rationale

Risk Score

Risk Level

Treatment option chosen

Select… Select…

Select… Select…

Calculated Calculated

Calculated Calculated

Select… Select…

Select…

Select…

Calculated

Calculated

Select…

Select…

Select…

Calculated

Calculated

Select…

Select…

Select…

Calculated

Calculated

Select…

Select…

Select…

Calculated

Calculated

Select…

Select…

Select…

Calculated

Calculated

Select…

Select…

Select…

Calculated

Calculated

Select…

9

Select…

Select…

Calculated

Calculated

Select…

10

Select…

Select…

Calculated

Calculated

Select…

11

Select…

Select…

Calculated

Calculated

Select…

12

Select…

Select…

Calculated

Calculated

Select…

13

Select…

Select…

Calculated

Calculated

Select…

14

Select…

Select…

Calculated

Calculated

Select…

15

Select…

Select…

Calculated

Calculated

Select…

16

Select…

Select…

Calculated

Calculated

Select…

17

Select…

Select…

Calculated

Calculated

Select…

18

Select…

Select…

Calculated

Calculated

Select…

19

Select…

Select…

Calculated

Calculated

Select…

20

Select…

Select…

Calculated

Calculated

Select…

1 2 3 4 5 6 7 8

treatment of the risk. In summary, Accept means

Treatment action(s) that you will take no further action, Avoid means that you will take action so that the risk no longer applies, Modify means that you will take further action to reduce the Likelihood or Impact, Share means that another party will help to reduce the risk e.g. insurance

Profile for CertiKit Limited

GDPR-FORM-07-1 Data Protection Impact Assessment Tool  

GDPR-FORM-07-1 Data Protection Impact Assessment Tool  

Profile for public-it