Workshop | Privacy impact assessment masterclass

In a digital-first world, organisations are increasingly expected to design with privacy in mind. Whether you’re working in legal, compliance, product, IT, or operations, understanding how to assess and mitigate privacy risks is essential to staying compliant, protecting your organisation’s reputation, and building trust with customers and stakeholders.

Join us for a practical online workshop for professionals involved in projects, systems, or services that process personal information. This session will guide you through the purpose and process of privacy impact assessments (PIAs)—also known as data protection impact assessments (DPIA) in the EU and personal information impact assessments (PIIAs) in South Africa. You’ll learn when and why to conduct them, explore the legal and regulatory frameworks that make them necessary, and walk through real-world examples that typically trigger an assessment. We’ll also share practical privacy-by-design techniques and end with a hands-on exercise to apply what you’ve learned.

This workshop is designed to help you embed privacy into your organisation’s day-to-day work and build safer, more compliant practices.

Outcomes

• Understand the role and purpose of DPIAs/PIAs/PIIAs in managing privacy risk.
• Identify the legal and regulatory requirements that mandate these assessments.
• Recognise common scenarios that trigger the need for an impact assessment.
• Learn how to collaborate across teams to integrate privacy-by-design approaches.
• Gain hands-on experience through an interactive sample assessment exercise.
• Strengthen your ability to support compliant, privacy-conscious initiatives within your organisation.

Audience

• Legal and compliance: In-house legal counsel, compliance officers, data protection officers (DPOs), and information officers.
• Product and project management: Product managers, project managers, and business analysts.
• Technology and security: IT professionals, system architects, and cybersecurity specialists.
• Risk and governance: Risk managers, GRC teams, and privacy consultants.
• Operations and service delivery: Operations managers and teams involved in processing personal information.

Key benefits of attending

• Strengthen your understanding of personal information impact assessments and their role in data protection compliance.
• Gain practical strategies to identify, assess, and manage privacy risks across projects, systems, and services.
• Learn how to embed privacy-by-design principles into day-to-day operations and decision-making.
• Collaborate and engage with peers across functions to align privacy efforts across your organisation.

Presenters

Zwakele Mbanjwa and Emma Quiding have extensive experience conducting PIIAs in multiple jurisdictions, helping organisations embed privacy by design into their products. They have advised on assessments in South Africa, and the European Union by navigating complex requirements under POPIA and the GDPR. Together, they offer participants not only technical and legal expertise but also practical insights drawn from hands-on experience conducting PIIAs for AI-driven solutions, cross-border data transfers, and high-risk processing activities.

Bookings

Members:

This event is free for members of the Michalsons data protection programme. They can register for the event by clicking on the red register button.

Non-member:

Join the data protection programme now and benefit from all its features or Buy a ticket for R2272 to attend just this workshop.