The OneTrust Assessment Automation privacy impact assessment (PIA) technology is officially aligned with the CNIL’s (the French Data Protection Authority) PIA methodology!

Completing PIAs in line with regulatory authorities’ expectations can be a complex task. The CNIL has worked to help these issues with its guidance on how to best conduct and manage a PIA. OneTrust’s new PIA is based on this methodology, and simplifies the process for customers implementing PIAs based on the CNIL’s guidance.  

To learn more about how OneTrust supports the CNIL PIA methodology and to be the first to access our free CNIL PIA tool, register for our webinar on July 10 at 11:00 CET (in French only).  

OneTrust customers can simplify PIA exercises, benefit from high-performance technology, and leverage the CNIL PIA model with the OneTrust platform. Features of the OneTrust PIA based on CNIL PIA methodology includes:  

Integration of CNIL’s PIA methodology 

  • Context analysis 
  • Analysis of compliance with the fundamental principles of GDPR 
  • Compliance Action Plan 
  • Risk analysis according to the EBIOS method 
  • Inherent and residual risk 
  • Monitoring of risk treatment 
  • Automatic update of processing records and data mapping 

  
OneTrust Athena AI-supported analysis and follow-up :  

  • Preliminary analysis and automatic PIA generation 
  • Automatic identification of compliance deviations 
  • Automatic suggestion of action plans 
  • Integrated library of ISO 27001 & 27701 measurements and controls 
  • Automatic generation of in-depth evaluations 
  • Periodic review automatically generated according to the risk level of a processing activity 

Ease of use of the PIA methodology:  

  • Mobilization of internal and external stakeholders 
  • Centralized communications 
  • Generation of user notifications 
  • Simple formulations for GDPR beginners 
  • Advice and help with completion 

  
Methodological and legal content:  

  • Based on CNIL’s PIA guidelines 
  • Integrated GDPR & Loi Informatique et Liberté requirements 
  • CEPD integrated guidelines 
  • Integration of CNIL knowledge bases 
  • Integrated library of ISO 27001 & 27701 measurements and controls 
  • Content updated monthly to take into account French and international regulatory developments 

To be the first to access our free CNIL PIA tool, register your interest today or register for our webinar on July 10 at 11:00 CET (in French only).