Data Protection Impact Assessment (DPIA)

A process to identify and mitigate risks associated with data processing activities.

A DPIA is sometimes requested by a customer (in particular enterprises) before signing terms to work with a provider. This is typically driven by the need to demonstrate the company understands and has considered data flow risks.