The new code of practice on conducting privacy impact assessments (PIAs) is intended to replace the current PIA Handbook. The aim of the new code is to produce a practical guide which will help organisations conduct assessments of new projects that involve the use of personal information. The code explains the key principles behind a PIA and suggests how a PIA can be integrated with an organisation’s project and risk management processes.
The ICO is consulting to gather the views of stakeholders and the public about the new draft code.
The closing date for the consultation is 5 November 2013.
Draft: Conducting privacy impact assessments code of practice
Consultation response document
The ICO has also published the Trilateral Research & Consulting report on Privacy impact assessment and risk management (commissioned by the ICO) and our response to its recommendations.
· ICO response to recommendations