You are here:

Last updated on 29 June 2018
Ref: 35262
School types: All · School phases: All

As the DPO, you must be consulted when staff are carrying out a data protection impact assessment (DPIA). Get clarity on your role in the process, and share our checklist and template to help your colleagues identify when a DPIA is needed and cover everything they're required to.

Article tools


  1. What is a DPIA?
  2. Decide whether a processing activity requires a DPIA
  3. Choose the methodology
  4. Monitor the progress of the DPIA
  5. Decide whether the data processing activity can go ahead
  6. Consult the ICO if necessary
  7. Monitor the implementation of the processing activity

The Key has taken great care in publishing this article. However, some of the article's content and information may come from or link to third party sources whose quality, relevance, accuracy, completeness, currency and reliability we do not guarantee. Accordingly, we will not be held liable for any use of or reliance placed on this article's content or the links or downloads it provides. This article may contain information sourced from public sector bodies and licensed under the Open Government Licence.