CIPP-E - European Data Protection: Scope and Accountability - Section 4.3

Understand the role of data protection impact assessments (DPIAs), know the criteria for when they are mandatory, and understand the requirement for mandatory data protection officers (DPOs).

Explain when a data protection impact assessment is mandatory under Article 35 GDPR - such as large-scale processing of special categories or systematic monitoring of public areas - and describe the steps involved. Understand the Article 37 criteria that oblige an organisation to designate a data protection officer and the independence requirements that role carries.

Examworthy is not affiliated with or endorsed by IAPP. Original, blueprint-aligned practice material only.