Privacy Impact Assessment
This tool aims to assess the privacy risks associated to the implementation of IoT projects in the
workplace that involve the processing of employee data.
In accordance with the Article 35 of the General Data Protection Regulation (GDPR):
“Where a type of processing in particular using new technologies, and taking into account the
nature, scope, context and purposes of the processing, is likely to result in a high risk to the
rights and freedoms of natural persons, the controller shall, prior to the processing, carry out an
assessment of the impact of the envisaged processing operations on the protection of personal data."
We perform a detailed privacy impact assessment based on the information provided on the
IoT project setup and data flow. The results comprise a detailed risk score and benchmark analysis
with respect to similar project implementations.