July 2018
Intermediate to advanced
356 pages
9h 18m
English
Content preview from Hands-On Security in DevOps
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Strategy and metrics
To identify current organization business risk profiles, specific to GDPR compliance, it's suggested you define Privacy Impact Assessment (PIA) templates and process to review current data handing risks. The PIA is a tool to identify the privacy risks through the development and operations cycle by the following assessment.
- Whether the information should be collected
- The type of collected information, and related to PII (Personal Identifiable Information)
- Protection and process of handling the information to mitigate any privacy risks.
- Options and explicit consents of the user to collect, handle, edit or remove the information.
Refer to the https://www.bitkom.org/noindex/Publikationen/2017/Leitfaden/170919-LF-Risk-Assessment-ENG-online-final.pdf ...