Impact assessment

By Mark Sharron • 14 December 2020 • 1 min read

What is an impact assessment?

An impact assessment, or a privacy impact assessment, is a practice used by organisations to identify risks associated with the processing of personal data.

Mark Sharron

Mark Sharron leads Search & Generative AI Strategy at ISMS.online. His focus is communicating how ISO 27001, ISO 42001 and SOC 2 work in practice - tying risk to controls, policies and evidence with audit-ready traceability. Mark partners with product and customer teams so this logic is embedded in workflows and web content - helping organisations understand, prove security, privacy and AI governance with confidence.

Data Privacy 19 May 2026

Healthcare AI Is Moving Fast, But Data Governance Is Struggling To Keep Up

How can healthcare organisations resolve gaps in trust and data governance to realise the full benefits of AI? By Kate O’Flaherty The healthcare s...

Kate O'Flaherty

Cyber security 14 May 2026

If Burnout Were a Security Risk, We’d Already Have Solved It

Cybersecurity and compliance have always been good at one thing: taking uncertainty and forcing it into structure. We take something abstract, thre...

Rebecca Harper

Cyber security 12 May 2026

Why the UK’s NIS Update May Mean Extra Work for In-Scope Organisations

The Cyber Security and Resilience Bill (CSRB) continues to make its way through parliament. But the end of a lengthy legislative process is slowly ...