EDPS reports on EU Institutions’ use of Data Protection Impact Assessments

The European Data Protection Supervisor (EDPS) released a report on how EU institutions, bodies, and agencies carry out Data Protection Impact Assessments (DPIAs) when processing information that presents a high risk to the rights and freedom of natural persons. In February 2020, the EDPS had conducted a survey to determine how the EU institutions have been using DPIAs. The EDPS report contains lessons learned and best practices.