Data Protection Impact Assessment (DPIA)

Though not implemented yet, section “Responsibilities of Information Officers” (point 4.1b) of the POPIA Regulations, states that data protection officers must ensure that “a personal information impact assessment is done to ensure that adequate measures and standards exist in order to comply with the conditions for the lawful processing of personal information”.