Since the introduction of the General Data Protection Regulation (GDPR) on 25 May 2018, my Department and its Offices have not commenced any Data Protection Impact Assessments (DPIAs) as no new data processing initiatives involving the processing of personal data have been proposed during that time.
My Department's Data Protection Officer (DPO)works actively with Business Units across my Department and its Offices who are responsible for specific functions that are particularly involved in the processing of personal data. This work includes the provision of practical advice and assistance in ensuring compliance with the GDPR, including the need for Data Protection Impact Assessments, where required.