A PIA is a systematic assessment of a project that identifies the impact that the project might have on the privacy of individuals, and sets out recommendations for managing, minimising or eliminating that impact.
The term ‘project’ is used loosely and is intended to cover the full range of activities and initiatives that may have privacy implications, including:
PIAs are an important component in the protection of privacy, and should be part of the overall risk management and planning processes of APP entities.
Undertaking a PIA can assist entities to: