Glossary term
Glossary term
Governance and Compliance
GDPR-style assessment for high-risk personal data processing.
The UK ICO found that Clearview AI failed to complete a DPIA before scraping and processing 30 billion facial images - resulting in a £7.5 million fine and enforcement notice to delete UK residents' data.
A European telecom operator completed a DPIA for its AI-powered network-quality prediction system, documenting the lawful basis, data minimisation measures, and data-subject rights procedures.
NHS England completed a DPIA for its federated learning initiative - documenting that patient records never leave NHS infrastructure and that only aggregated model gradients are shared.