The Center for Information Security and Privacy Protection (CIP) has revamped the Privacy Self Assessment (PriSA). This is in support of measuring, improving and monitoring the privacy maturity of organizations.
In the new version of the PriSA, the texts have been shortened and clarified for better usability by non-lawyers. Furthermore, it includes a more user-friendly design, it is easier to customize texts for one's own organization, and it is now possible to add a comment to each section. A companion tool has also been developed for combining and comparing self-collected reports.
The innovations have been implemented in line with the previous version of the PriSA. This allows organizations that have worked with the previous version to easily compare previously obtained results with new results.
Privacy professionals and staff in implementation can fill out the PriSA. The model translates the answers given into a "score" in a maturity model. This incorporates the 13 criteria of the Privacy Baseline. The Privacy Baseline is based on the General Data Protection Regulation (AVG).
To comply with privacy legislation, an organization must have at least maturity level 3. Here, the work is carried out organization-wide according to an established procedure. You can indicate your organization's ambition level in the PriSA to see what steps are needed to achieve it.
Download the PriSA via the website of the CIP(link to other website) and find out the state of privacy maturity within your organization.
Want to learn more about the PriSA? The CIP is hosting webinars on Thursday, April 3 and Thursday, April 10. For more information, questions and registration, please email cip@cip-overheid.nl, quoting "PriSA.
