Impact assessment

By Mark Sharron • 14 December 2020 • 1 min read

What is an impact assessment?

An impact assessment, or a privacy impact assessment, is a practice used by organisations to identify risks associated with the processing of personal data.

Mark Sharron

Mark Sharron leads Search & Generative AI Strategy at ISMS.online. His focus is communicating how ISO 27001, ISO 42001 and SOC 2 work in practice - tying risk to controls, policies and evidence with audit-ready traceability. Mark partners with product and customer teams so this logic is embedded in workflows and web content - helping organisations understand, prove security, privacy and AI governance with confidence.

Cyber security 21 April 2026

Atlas Air and the Supply Chain Problem: How Unproven Claims Create Real-World Risk

Ransomware group Everest’s claims it breached Atlas Air and its supplier Tsunami Tsolutions show how modern ransomware attacks are exploiting suppl...

Kate O'Flaherty

Cyber security 16 April 2026

Closing the Resilience Gap: Where the Government Says UK PLC Is Still Failing

Customers, boards and regulators are all in agreement. If cybersecurity breaches are impossible to prevent 100% of the time, the focus must be on i...