Information technology - Security techniques - Guidelines for privacy impact assessment
ISO/IEC 29134:2023 This document gives guidelines for:
- a process on privacy impact assessments, and
- a structure and content of a PIA report.
It is applicable to all types and sizes of organizations, including public companies, private companies, government entities and not-for-profit organizations.
This document is relevant to those involved in designing or implementing projects, including the parties operating data processing systems and services that process PII.