How do I write a DPA/DPIA?
The DPA/DPIA framework is part of the University’s procedures to meet the legal requirement under UK GDPR to take a data protection by design and default approach to all processing of personal data we carry out.
A DPA/DPIA is an assessment of the processing designed to identify and put in place appropriate measures to implement the data protection principles and to mitigate the risks of the processing.
You may be asked to provide a DPA/DPIA, for instance when requesting access to the BMRC computing cluster.
All forms and guidance can be found on the university's Data Protection By Design pages.