Listing Thumbnail

    Privacy Impact Assessment

     Info
    Sold by: gwi.digital 
    Are you adequately managing privacy risks? It’s more than a compliance exercise.
    Listing Thumbnail

    Privacy Impact Assessment

     Info
    Sold by: gwi.digital 

    Overview

    Privacy Impact Assessment

    A Privacy Impact Assessment (PIA) is an integral part of the project planning process. It identifies the impact that a project may have on the privacy of individuals and sets out recommendations for managing, minimising, or eliminating that impact. Privacy issues that are not adequately addressed can result in harm to customers and stakeholders (e.g. financial or reputational damage), non-compliance with privacy laws, loss of credibility and trust in your organisation, and undermine your project’s success.

    GWI can help you to identify problems early, when it is easier and cheaper to address them.

    A Proactive Approach

    GWI adopts the internationally recognised Privacy by Design (PbD) framework to help our clients build good privacy practices into the design and development of systems, processes, and decision-making that involve the use or disclosure of personal information.

    PbD enables a shift from a compliance/reactive approach to privacy management, to a proactive and preventative approach, minimising information systems’ privacy risks through technical and governance controls, ultimately supporting increased public trust. It ensures that privacy is considered at all stages of an initiative. GWI works across all Australian jurisdictions and is familiar with the guidance provided by each government’s guidance and templates.

    High Level Approach

    GWI delivers PIAs using a four-step process

    1. Engage with key stakeholders to understand the personal and/or sensitive information involved in a project.
    2. Analyse the information/data flows to enable the identification of risks, considering the legislative context and impacted individuals.
    3. Design a strategy to minimise identified risks. Document the privacy impact assessment process and outcomes.
    4. Incorporate client input and finalise for implementation.

    Sizing and Scaling

    Our PIA offering is sized and scaled based on several dimensions including:

    • Application/platform size and complexity - are we dealing with a single standalone application/platform, a single application/platform with limited integration or multiple integrated applications/platforms ?
    • Data flows - how many data flows are involved - up to 6, 6-12 or 12+ ?
    • Data points - how many data points are involved - limited but known number of personal information data points, limited but unknown # of personal information data points or personal information not well understood or documented ?
    • Legislation - single jurisdiction (State or Territory), national (Australia) or international ?

    About Us

    GWI is experienced in assessing privacy risks within complex regulatory, legislative and technology environments involving the collection, transfer, handling, access and storage of sensitive and personal information.

    We have a detailed understanding of the privacy obligations impacting our clients. We have privacy subject matter experts with internationally recognised certifications. GWI understands the critical intersection of privacy with data ethics, data security and governance.

    Our consultants have extensive experience navigating privacy and data protection legislation and regulations, including impending reforms at the federal level. We have helped public and private sector clients to develop their privacy maturity and capability.

    Our work is underpinned by rigorous internal processes that meet applicable international standards, including ISO 9001.

    Highlights

    • We understand the critical intersection of privacy with data ethics, data security and governance
    • Privacy subject matter experts with internationally recognised certifications
    • Extensive experience navigating privacy and data protection legislation and regulations

    Details

    Delivery method

    Pricing

    Custom pricing options

    Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.

    Legal

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Support

    Vendor support

    A gwi.digital delivery manager will work with you to coordinate implementation and execution of the Privacy Impact Assessment package.

    We offer extended business hours support via: