1、INTERNATIONA1.STANDARDISO/IEC29134editionSecond2023-05Informationtechno1.ogySecuritytechniquesGuide1.inesforprivacyimpactassessmentTechno1.ogiesdeinfrmationTechniquesdeSRUriW1.ignesdirectricespourV6tuded,impactssur1.aviepriv6eReferencenumberISO/IEC29134:2023(E)COPYRIGHTPROTECTEDDOCUMENTIS0/1EC2023IU
2、irhM*hedbdi1.iUedotherwiseupdhi.o啪InyM1.tta0DmkfifiU81.andonnet8CH-1214Vernier,GenevaPhone:M1.227490111觥ftte:丽丽BQrgPub1.ishedinSwitzer1.andIntroductionAprivacyimpactassessment(PIA)isaninstrumentfor:asgdb由ccrWh由hduiVeerhiPhiVae5zp3s,PerSoiDfrteriCttiSkkdTrtzProgt1114RJJ如Rwaretakingnecessaryactions,in
3、consu1.tationwithstakeho1.ders,totreatprivacyrisk.船期1g1.HPt三献或m9三WW)R1.三哨啼H阚拗硼f%E(片蹦加曲行0/1E得叫p!7uresmorethanatoo1.:itisaprocessthatbeginsattheear1.iestpossib1.estagesofaninitiative,whentherearesti1.1.opportunitiestoinf1.uenceitsoutcomeandtherebyensureprivacybydesign.Itisaprocessthatcontinuesunti1.,a
4、ndevenafter,theprojecthasbeendep1.oyed.Initiativesvarysubstantia1.1.yinsca1.eandimpact.Objectivesfa1.1.ingundertheheadingofprivacy,wi1.1.dependoncu1.ture,societa1.expectationsandjurisdiction.Thisdocumentisintendedtoprovide嘛林做物康顺飒M酬H机由I1.taWative期体由HjgMferPre曲秘艇re球通龈Mttancescircumstances.4JS律即群盟人帧科强?
5、搬总给itybA和&油邢8般裁蝴品即独服内部PrO强羽AoCOndUCttheirownPIA.婚“缺嬲em,in湖幅栩VW即颈励舀磐an愧科sefi鼬初强假任俄Vi勰解hersJ梳UChdevicestoprovideprivacy-re1.evantdesigninformationtothoseundertakingthePIA.irispossib1.ethattheproviderofdigita1.devicesisunski1.1.edinandnotresourcedforPIAstforexamp1.e:asma1.1.retai1.er,orasma1.1.andmediu
6、m-sizedenterprise(SME)usingdigita1.1.yconnecteddevicesinthecourseofitsnorma1.businessoperations.印ItWMryHnm3ticiwMhi甫iAiwdTttJkdbBWAndevicrwhAp1.iercantheexpectedP1.1.principa1./SMEcontextfortheequipmenttheysupp1.y.洲小Pa1.懈赧叫工加湘蝴Mrt?陶徽湎硼三W幽硼的rea朋pp1.y.Thisdocumentisintendedtobeusedwhentheprivacyimpact
7、onP1.1.principa1.sinc1.udesconsiderationofprocesses,informationsystemsorprogrammes,where:-theresponsibi1.ityfortheimp1.ementationand/orde1.iveryoftheprocess,informationsystemOrprogrammeissharedwithotherorganizationsanditshou1.dbeensuredthateachorganizationproper1.yaddressestheidentifiedrisks;anorgan
8、izationisperformingprivacyriskmanagementaspartOfitsovera1.1.riskmanagementeffortwhi1.epreparingfortheimp1.ementationorimprovementofitsISMS(estab1.ishedinaccordancewith由SWIRGRZWMsorananfiMyfeRfiHg魄Fmentsystem);oranorganizationisperformingprivacyriskanorganization(e.g.government)isundertakinganinitiat
9、ive(e.g.aPUbIiC-PriVate-PartnerShiP逸柚由屈信怖阖hent糠8福掘Vte1.由MMw出队V映S蛆幅rermentp1.anbecomespartofcorresponding1.egis1.ation,regu1.ationorthecontractinstead;theorganizationwantstoactresponsib1.ytowardsthePI1.principa1.s.CUBbg1.kd1.dddummhiMeibathcnko1.sJdchUi1.n削661娜CH的阙9铀门IapruitiMdyUiKo1.S)PrQosIS0/1EC29
10、151(forP1.1.protectioncontro1.s),orcomparab1.enationa1.standards,ortheycanbedefinedbythepersonresponsib1.eforconductingthePIA1independent1.yofanyothercontro1.set.3.3assessortheirteam.entry:Theassessormaybesupportedbyoneormoreotherinterna1.and/orexterna1.expertsaspartof3.4process(SOURCE:ISO/IEC27000:
11、2018,3.54device3.6privacyimpactsafeguardingrequirements,impactcanresu1.tfromtheprocessingofP1.1.inconformanceorinvio1.ationofprivacy3.7privacyimpactassessmentPIAinformation,framedwithinanorganizationbroaderriskmanagementframework3.8privacyriskmapNote1toentry:Themapistypica1.1.yusedtdeterminetheorder
12、inwhichtheprivacyrisksshou1.dbetreated.programme(SOURCE:ISO143004:2011,3.21projecttime,costandresourcesISO/IEC2023-A1.1.11ghtsreservedpersonwho1.eadsandconductsaprivacyimpactassessment(3.7)Note1toNote2toentry:Theassessormaybeanexpertinterna1.orexterna1.totheorganization.setofinterre1.atedorinteracti
13、ngactivitieswhichtransformsinputsintooutputs3.5combinationofhardwareandSoftWare,orso1.e1.ysoftware,thata1.1.owsausertoperformactionsanythingthathasaneffectontheprivacyofaP1.1.principa1.and/orgroupofP1.1.principa1.sNote1toentry:Theprivacyovera1.1.processofidentifying,ana1.ysing,eva1.uating,consu1.tin
14、g,communicatingandp1.anningthetreatmentofpotentia1.privacyimpactswithregardtotheprocessingofpersona1.1.yidentifiab1.eSOURCE:1SO1EC29100:2011,2.20rmodifiedNote1toentryhasbeende1.eted.)diagramthatindicatesthe1.eve1.ofimpactand1.ike1.ihoodofprivacyrisksidentified3.9groupofprojectsmanagedinacoordinatedw
15、aytoobtainbenefitsnotavai1.ab1.efrommanagingthemindividua1.1.y3.10uniqueprocess,consistingofasetofcoordinatedandcontro1.1.edactivitieswithstartandfinishdates,undertakentoachieveanobjectiveconformingtospecificrequirements,inc1.udingtheconstraintsof(SOURCE:ISO9000:2015,3.4.23.11organizationpersonorgro
16、upofpeop1.ethathasitsownfunctionswithresponsibi1.ities,authoritiesandre1.ationshipstoachieveitsobjectivesN5e三jatocf111rfnp.orgMronfti(rfttbnSinpohtMitedcoreb1.ooder,tkorophnyv1.nbpr:Consu1.tationwithstakeho1.dersisintegra1.toaprivacyimpactassessment.隹的RCE:ISO37000:2021,3.3.1,modifiedNotes1and2toentr
17、yhavebeenmodified.techno1.ogyhardware,software,andfirmwaresystemsandsysteme1.ementsinc1.uding,butnot1.imitedto.informationtechno1.ogy,embeddedsystems,oranyothere1.ectro-mechanica1.orprocessor-basedsystemsSOURCE:ISO/IEC16509:1999,3.34AbbreviatedtermsAPIapp1.icationprogramminginterfaceBYODbringyourown
18、deviceICTinformationandcommunicationtechno1.ogiesIPMIntemationa1.ProjectManagementAssociationISMSinformationsecuritymanagementsystemPHpersona1.1.yidentifiab1.einformationPRINCEPRojectsINcontro1.1.edenvironmentsSMEsma1.1.andmedium-sizedenterprises5PreparingthegroundsforPI5.1 Benefitsofcarrj,ingoutaPI
19、AThisdocumentprovidesguidancethatcanbeadaptedtoawiderangeofsituationswhereP1.1.isprocessed.However,ingenera1.,aPIcanbecarriedoutforthepurposeof: identifyingprivacyimpacts,privacyrisksandresponsibi1.ities; providinginputtodesignforprivacyprotection(sometimesca1.1.edprivacybydesign); reviewinganewinfo
20、rmationsystemsprivacyrisksandassessingitsimpactand1.ike1.ihood;providingthebasisfortheprovision mitigationactionrecommended;ofprivacyinformationtoP1.1.principa1.sonanyP1.1.principa1. maintaining1.aterupdatesorupgradeswithadditiona1.functiona1.ity1.ike1.ytoimpactthePIIthatarehand1.ed; sharingandmitig
21、atingprivacyriskswithstakeho1.ders,orprovidingevidencere1.atingtocomp1.iance.琳群tasse&E格杷由*me用f网UPiM砥母假代诉做me噂曲而他CigriVK册帼HohM和偌f8tnnreporting.A网&陶ngoftcnf11M斑好曲照8黜耕部网期X豺褥1K即P饯妙6彼品砒1胡普冷战都镯坨句precautionsandbui1.dtai1.oredsafeguardsbefore,notafter,theorganizationmakesheavyinvestments.Thecostsofamendingap
22、rojectatthep1.anningstageisusua1.1.yafractionofthoseincurred1.ateron.姗toP*三fi(i朋螂盼u1.三猷磷蜘OrPpe的潞ICOS丽岫陶喇W曲,at0gc1.hcindpotentia1.mediaorpub1.icconcernbyconsideringprivacyissuesear1.y.Itcana1.sohe1.panorganizationtoavoidcost1.yorembanassingprivacymistakes.8HiboNW1.HUkh%tionOftiMnCO解曲CCCiMi中1.1.ant搬gk
23、c0jviUwWPf1.R5ncp勒DM僧M国nintheeventofasubsequentcomp1.aint,privacyauditorcomp1.ianceinvestigation.Intheeventofaprivacyriskorbreachoccurring,thePIreportcanprovideevidencethattheorganizationacted。他趣%出干如iKPWi1.Xga1.fti%诧8品#明UtatiOn.occurrence.Thiscanhe1.ptoreduceorevene1.iminateanyAnappropriatePIAa1.sod
24、emonstratestoanorganizationcustomersand/orcitizensthatitrespectsS嗯F曲Yft部1.1.冲阡协财疆JjHSnthefi啕i惚M蛭S出mersOrcitizensaremore1.ike1.ytotrustanAPIAenhancesinformeddecision-municationgapsorhidden碣懈肺魔丽蝴财es琳班丽cti福渐dec曲照加和睫tsys1.aH蝴网5产Ofinformation.B1处斜监胡。叫。醐北Hon的蠡Odn砥batiof1.睁Pejf岷AbkeSthaVMXdcN5Aa1.t即稹isitsw
25、ayOfeducatingemp1.oyeesaboutprivacyandmakingthema1.erttoprivacyprob1.emsthatcandamage4duedtgj11eetid.ktaaa(Miaydd1.uf1.nun1.1.iuja1.s(xB!izationsaudits.va1.ucs.APIAcanbeusedasanindicationof5.2 ObjectivesofP1.AreportingTheP1reportingobjectiveistocommunicateassessmentresu1.tstostakeho1.ders.Expectatio
26、nsfromaPIAexistfrommu1.tip1.estakeho1.ders.Thefo1.1.owingaretypica1.examp1.esofstakeho1.dersandtheirexpectations.P1.1.principa1.:PIAbeingprotected,isaninstrumenttoenab1.esubjectsofP1.Itohaveassurancethattheirprivacyis-Management:Severa1.ViewPointSapp1.ywith:v*徐HyftI站钻鹿htproc也斯即ge忸帆痴蝴点哪SW却从梆朗M生比招*叫屯晡
27、附岫Fsame;inputstobusinessorproductstrategy;一副蜘2觎function蜘晦tno三麻颇胁engareacrfta好脚!腕油眼tracedthroughchangeandriskmanagementandcanresu1.tintheprojectnothappeningorbeingcance1.1.ed.Theefforttoc1.assifyandmanageprojectPI1.shou1.dbefundedasaseparateinvestment1.ineitemandamountinaprojectorprogrammebudget,acce
28、ptab1.etoa1.1.stakeho1.ders;PIasanopportunitytobetterunderstandprivacyrequirementsandassessactivitiesagainsttheserequirements;inputsforproductorservicedesignandde1.ivery;reviewedandamendedthroughthechangemanagementprocessafterde1.ivery;PIAasaninstrumenttounderstandtheprivacyrisksatthefunction/projec
29、t/unit1.eve1.;conso1.idationofrisks;inputtoprivacypo1.icydesignandenforcementmechanisms;inputsforre-engineeringprivacyprocesses.Regu1.ator:PIAisaninstrumentthatcontributesevidencewhichsupportscomp1.iancewithapp1.icab1.e1.ega1.requirements.Itcanprovideevidenceofduedi1.igencetakenbytheorganizationinca
30、seofbreach,non-comp1.iance,comp1.aint,etc.Customer:P1.AisameanstoassesshowthePIIprocessororPIIcontro1.1.erishand1.ingPIIandprovidesevidencethatitfo1.1.owsthecontractua1.ob1.igations.Pietfjmdg1.f1.entfh0df44tUdW0tteJfun1.1.3tedTfreWrtnt(inve0)pAvf1.C5i1.1.ksjM)UTcStakittbkJwteoftheaffectedentities,wh
31、etheritisinherentormitigated.Thesecond(actionitems)isatrackingmechanismontheactions/tasksthatimproveand/orreso1.vetheidentifiedprivacyrisks.Sensitivity抬fbW鹿界ia1.,11fieet85.thereportinginformationshou1.dbedear1.yassessedandc1.assified5.3 Accountabi1.itytoconductaPIAAP1.Ashou1.dbeundertakenofprocesses
32、orinformationsystemsbyoneofanumberofdifferententitiesWihhuntbrotanizattoess4informationsystemorprogrammebyTypica1.1.y,theresponsibi1.ityforensuringthataPIAisundertakenshou1.d,inthefirstinstance,1.ie福no1.ogjW舐?(趴语融斯nK1.kivepr硼用圈WseB用icy.theprojectmanagerdeve1.opingthenewAccountabi1.ityforensuringtheP
33、IAisundertakenandthequa1.ityoftheresu1.t(PIaccountabi1.ity)他附KSibmIyWoF曲前例ngmaEHitn邮栅由UsqP1.iFcKm觊1.fwh屈囱nedaddotugescfici1.1.kediNtsonncbtpy3tach.anindependentthirdpartytodothework.ThereareHowever,whentheP1.Aisperformeddirect1.ybytheorganization,end-userassociationsorgovernmenta1.agenciesmayrequest
34、tohavethePIAadequacyverifiedbyanindependentauditor.Theorganizationshou1.densurethatthereisaccountabi1.ityandauthorityformanagingprivacyrisks,inc1.udingtheimp1.ementationandmaintenanceoftheprivacyriskmanagementprocessandforensuringtheadequacyandeffectivenessofanycontro1.s.Thiscanbefaci1.itatedby:spec
35、ifyingwhoisaccountab1.eforthedeve1.opment,imp1.ementationandmaintenanceoftheframeworkformanagingprivacyrisk,and岖QktoYfrptrv4oyimW隰(RipHUcyrisktreatment,maintainingprivacycontro1.sand5.4Sca1.eofaPIAThesca1.eofthePIAwi1.1.dependonhowsignificanttheimpactsareassumedtobe.Forexamp1.e,iftheimpMt5e11aIedCOn
36、trO1.b做n11bea03mp1.oyKtiwmrt婚OrganiZatiQMinmbPHngohrn1.pk*mJznbkmtwishesthcPIAcanengageon1.yemp1.oyeerepresentativesandhere1.ative1.ysma1.1.sca1.e.However,ifagovernmentdepartmentwishestointroduceanewidentitymanagementsystemfora1.1.citizens,itshou1.dconductamuch1.argerPIAinvo1.vingawiderangeofexterna
37、1.stakeho1.ders.Itispresupposedthatorganizationsprovidese1.f-assessmentontherequiredsca1.eofthePkVincomp1.iancewith1.awsandregu1.ations.Theamountandgranu1.arityoftheP1.1.perperson,thedegreeofS6vityprHkA8!Wu11bc!QW1.ctorrincpafi1.1.1.nngi)uM()ersca1.e.peop1.ewhohaveaccesstothePIIthatInthecaseofSMEs,n
38、on-profitorgovernmenta1.organizations,thedeterminationoftheappropriate-麴1.eGE,sU忠A那起A2心MRa删格般妙阳拓网即ms胸rs6sciiatihhf1.f1.ubjMtio,theVd1.A1.|口电*&1而andthespecificprogramme,informationsystemortheobjective*issomethingthatshou1.dbeachieved,theninputwprovidesguidanceoninformationcanbenecessarytoachievethe,r
39、objcc1.ivenrtheexpectedoutputistherecommendedtargetforthe“actions:(;Bf决Wii(n4价御曲y】ents,IiViMWWW罪(P生XPeCtHi怖i融rWCeSSarytObecarriedouttoachievetheimp1.ementationguidance*providesmoredetai1.sofmatterswhichhavepossib1.eneedstobeconsideredinperformingtheactions1,.Theactions*inthisc1.ause,orequiva1.ents,a
40、daptedtothedesiredscopeandsca1.eofaPIAmaybeimp1.ementedstand-a1.onebyanorganization.Theyarcintendedtoformareasonab1.ebasisforp1.anning,imp1.ementingandfo1.1.owingupthePIAinawiderangeOfcircumstances.TheorganizationconductingaP1.processmaywishtodirect1.yadapttheprocessguidancebe1.owtoitsspecificP1.Asc
41、a1.eandscopeorasonepossib1.ea1.ternativetose1.ectasuitab1.erisk-basedmanagementSysteniJnc1.udingISO/IEC27001,PIAandIntegra1.eCIause7appropriatc1.yadaptede1.ementsidenti11es.guidancewhereOn1.yactionsstepsse1.ectedtonecessaryparticu1.arupdaterequirementout.anupdatetoanexistingPIAdrawsupportcodesofcond
42、uctprovidingindustryassociationsbodiesshou1.dSMEsencouragedencouragedto6.2 DeterminewhetheraPIAisnecessary(thresho1.dana1.ysis)kuiInformationabouttheprogramme,informationsystemorprocessunderassessment.Actiostoanewshou1.dupdatedPIrequired.referenceorganization,smanagement,inconjunctionapp1.icabi1.ity
43、OfassessorPIAreportstobeproduced.kn1.enemtkRk1.afe!aneworprospectivetechno1.ogy,serviceorotherinitiativewhereP1.1.isrorwi1.1.be,processed,informationapp1.icab1.eoperation,purposesIawsmeansregu1.ations,interna1.po1.icychangedstandards,businessexpansionoracquisitions.po1.icyprocessingOfaccountbedeve1.opedandoperatedwithouttriggeringasettingboundarieswithin6.3PreparationoftheP1.A6.3.1SetupthePIAteamandprovide
