This international standard defines the principles that must be respected by any risk management approach specific to privacy.
The CNIL’s PIA Guides have been updated to provide a tool for the General Data Protection Regulation (GDPR).
The methodological approach is a privacy specific instantiation of the EBIOS toolbox.
It allows to build and demonstrate compliance with the GDPR of a processing of personal data.
The guides (the methodology, the templates and the knowledge bases) are provided with a free software, case studies, guidelines, etc.
On the CNIL’s website: Privacy Impact Assessment (PIA)
This case study aims at showing how to use the EBIOS toolbox in the privacy specific sector: