Data protection impact assessment (DSIA) is a structured risk analysis prescribed in certain cases to assess the possible consequences of data processing operations, which HWR Berlin is required to carry out.
The DSIA is regulated in Article 35 of the General Data Protection Regulation (GDPR). Accordingly, it must be carried out if there is likely to be a high risk to the rights and freedoms of natural persons due to the nature, scope, circumstances and purposes of the processing.