Descarga gratuita

Plantilla EIPD RGPD

Plantilla completa de Evaluacion de Impacto en Proteccion de Datos cubriendo descripcion del tratamiento, identificacion de riesgos y consulta a la autoridad de control.

Plantilla estructurada para realizar una EIPD conforme al RGPD segun el articulo 35.

Lista de verificación accionable — no solo teoría

Elaborada por especialistas en cumplimiento de la UE

Formato PDF — imprima o comparta con su equipo

Completamente gratuita, no se requiere tarjeta de crédito

Obtenga su checklist gratuita

Sin tarjeta de crédito. Descarga instantánea.

Enviaremos el enlace de descarga una sola vez al correo facilitado. Los correos de marketing solo se envían si marca la casilla anterior.

Qué incluye

Todo lo que necesita para evaluar, planificar y ejecutar su proceso de cumplimiento.

Processing Activity Description - systematic documentation of data flows and purposes

Necessity Assessment - proportionality and lawful basis evaluation framework

Risk Identification Matrix - structured threat and vulnerability analysis for personal data

Data Subject Rights Analysis - impact assessment on individual rights and freedoms

DPO Consultation Record - formal documentation of Data Protection Officer input

Supervisory Authority Consultation triggers - Article 36 prior consultation criteria checklist

Risk Mitigation Measures - technical and organizational safeguards documentation

Monitoring Plan - ongoing review schedule and compliance verification procedures

Stakeholder Sign-Off template - management and DPO approval documentation

Cross-Border Transfer Assessment - Chapter V compliance for international data flows

Diseñado para servicios financieros regulados en la UE

GDPRDSGVOISO 27701

Preguntas frecuentes

When is a DPIA required under GDPR?

A DPIA is mandatory under Article 35 when processing is likely to result in a high risk to individuals' rights and freedoms. This includes systematic profiling with significant effects, large-scale processing of special category data, and systematic monitoring of publicly accessible areas. National DPAs also publish lists of processing activities that require a DPIA.

Who should be involved in conducting a DPIA?

The data controller is responsible for the DPIA, but should involve the DPO (mandatory consultation under Article 35(2)), relevant business stakeholders, IT security teams, and potentially data subjects or their representatives. For complex processing, external privacy consultants may be advisable.

What happens if a DPIA identifies high residual risk?

If residual risks remain high after applying mitigation measures, you must consult your supervisory authority under Article 36 before proceeding with the processing. The authority has up to 8 weeks (extendable by 6 weeks) to provide written advice, which may include prohibiting the processing.

Can Matproof help manage DPIAs continuously?

Yes. This template helps you conduct individual assessments, and Matproof's platform manages the full DPIA lifecycle - from initial screening through assessment, mitigation tracking, and periodic reviews. All evidence is collected and stored automatically with complete audit trails.

Empezar

¿Listo para automatizar tu cumplimiento?

La checklist es solo el comienzo. Matproof automatiza la recopilación de evidencias, la generación de políticas y la monitorización continua para que puedas centrarte en tu negocio.

Reservar una demo Ver precios