Privacy Impact Assessments
Privacy Impact Assessments (PIAs) enable public and private sector organisations to assess the impact of introducing new technologies, products and operational processes on the management of personal information. A PIA is essential when developing new services (whether off-line or online), processes or products involving personal information or when changing existing projects or services that may impact your management of customer/citizen data. Trust follows where organisations consider allocation of risks; individual control and accountability.
The IIS approach to PIAs builds on guidelines issued by the Australian and United Kingdom Information Commissioner offices. IIS' approach goes beyond mere compliance with privacy law; rather IIS looks to wider privacy challenges and opportunities including allocation of risks and individual trust and finds solutions that ensure information flows enhance the trust between customers, business and government. IIS pays particular attention to preventative measures and ex-post measures to resolve the inevitable problems that arise.