When is a DPIA required under GDPR?

A Data Protection Impact Assessment is required when processing is likely to result in high risk to individuals. Examples include large-scale profiling, systematic monitoring, processing of special category data, and new technologies. Article 35 GDPR defines the triggers.

What happens if you skip a required DPIA?

Failing to conduct a required DPIA is a direct GDPR violation subject to fines up to €10 million or 2% of global turnover. Regulators have issued fines specifically for missing DPIAs, even when no data breach occurred.

Will I receive a certificate upon completion?

Yes! Upon successfully completing the course and passing all assessments, you'll receive a verified certificate of completion that you can share on LinkedIn or include in your resume.

How long do I have access to the course?

Once purchased, you receive 12 months of access to all course materials. This includes all video lessons, downloadable resources, and any updates published during that period.

Bestseller

LIA & DPIA

Master LIA balancing tests and DPIA risk assessments - the two essential GDPR compliance tools. Learn when each is required and how to conduct them properly.

★ 4.5 · 77 reviews6 lessons · 0.6hCertificate · 12 languages

Course overview

Inside this course.

This focused course teaches you the two most important GDPR assessment tools: Legitimate Interest Assessments (LIA) and Data Protection Impact Assessments (DPIA). You'll learn exactly when legitimate interest can be used as a legal basis, how to conduct the three-part balancing test, and how to document your assessment. For DPIAs, you'll understand when they're mandatory, how to identify and evaluate risks, and how to implement appropriate safeguards. The course includes step-by-step guidance, real-world examples, and knowledge checks to ensure you can apply these assessments confidently in your organization.

Master LIA balancing tests and DPIA risk assessments for GDPR compliance. Learn when to apply legitimate interest, identify high-risk processing, and implement safeguards. With step-by-step guidance, knowledge checks, and real examples.

Built for compliance teams who need procedures that survive audit, not just theory. You'll work through 3 structured modules and 6 lessons (~0.6h) with downloadable templates and finish with a verifiable certificate of completion you can list on LinkedIn the same day.

What you'll learn

Outcomes, not just knowledge.

Best fit for

· Compliance leads, DPOs, risk managers
· Teams operationalizing this regulation
· Anyone who needs depth, not awareness

Conduct legitimate interest assessments using the three-part test
Identify when DPIAs are required and conduct them properly
Systematically identify and evaluate privacy risks
Create assessment records that satisfy regulatory requirements

Curriculum

Modules with 6 lessons.

Video, downloadable templates, and a workshop in every module. Updated quarterly.

Last updated · May 2026

How we build courses

Built by a team, not one person.

Every course is co-authored by working practitioners and reviewed by external auditors. We update content quarterly so what you learn matches what regulators are enforcing.

Privacy lawyers

EU & UK qualified, IAPP-certified.

Practicing DPOs

Active DPOs at fintechs, healthtechs, public sector.

Compliance officers

Operationalizing compliance programs day-to-day.

Auditors & reviewers

Big-4 alumni who keep us honest.

Reviews · 77

From the people who finished it.

4.5

★★★★★

77 ratings

★★★★★

Finally a compliance course that gets to the point.

I've taken three courses on this regulation. This is the only one that actually shows you the workflows. The templates alone were worth the price.

Marta K. · Compliance lead, fintech

★★★★★

We rolled it out to the whole team.

The teaching style is exactly what compliance training has been missing. We bought 12 seats. Best money we spent in Q1.

Jonas H. · Head of Legal, SaaS

★★★★★

Saved us during a real incident.

Two weeks after finishing the course, we had to apply exactly what we learned. The runbooks and decision trees made it so much easier under pressure.

Amélie D. · Privacy counsel, healthcare

★★★★☆

Dense — in the best way.

Not a beginner course. If you already know the basics, this fills in every gap you didn't know you had. Quizzes are challenging.

Klaus M. · Compliance lead, manufacturing

FAQ

Common questions.

Anything else? Send us a note.

A LIA is a three-part test required when relying on legitimate interest as a legal basis under GDPR Article 6(1)(f). It evaluates the purpose (is it legitimate?), necessity (is processing essential?), and balancing (do the individual's rights outweigh the interest?).

Related courses

Continue your compliance track.

Browse all →

GDPR Masterclass: Building a Culture of Compliance

Master GDPR compliance from data principles to breach response. A comprehensive course with templates, case studies, and certification.

★ 4.745 lessons

Become a DPO: Your Path to Data Protection Leadership

Become a certified Data Protection Officer. Master GDPR compliance, incident management, and organizational leadership in data protection.

★ 4.625 lessons

PDPL compliance essentials

Navigate Saudi Arabia's Personal Data Protection Law - consent requirements, cross-border transfers, breach response, and data subject rights.

★ 4.513 lessons

AI Act: Prohibited Uses

Understand EU AI Act prohibited practices - social scoring, biometric identification, emotion recognition, and manipulation. Know what AI uses are banned.

★ 4.618 lessons

Get this course for your team.

Request access →See plans

Bestseller

LIA & DPIA

Master LIA balancing tests and DPIA risk assessments - the two essential GDPR compliance tools. Learn when each is required and how to conduct them properly.

★ 4.5 · 77 reviews6 lessons · 0.6hCertificate · 12 languages

Course overview

Inside this course.

What you'll learn

Outcomes, not just knowledge.

Best fit for

· Compliance leads, DPOs, risk managers
· Teams operationalizing this regulation
· Anyone who needs depth, not awareness

Conduct legitimate interest assessments using the three-part test
Identify when DPIAs are required and conduct them properly
Systematically identify and evaluate privacy risks
Create assessment records that satisfy regulatory requirements

Curriculum

Modules with 6 lessons.

Video, downloadable templates, and a workshop in every module. Updated quarterly.

Last updated · May 2026

How we build courses

Built by a team, not one person.

Every course is co-authored by working practitioners and reviewed by external auditors. We update content quarterly so what you learn matches what regulators are enforcing.

Privacy lawyers

EU & UK qualified, IAPP-certified.

Practicing DPOs

Active DPOs at fintechs, healthtechs, public sector.

Compliance officers

Operationalizing compliance programs day-to-day.

Auditors & reviewers

Big-4 alumni who keep us honest.

Reviews · 77

From the people who finished it.

4.5

★★★★★

77 ratings

★★★★★

Finally a compliance course that gets to the point.

I've taken three courses on this regulation. This is the only one that actually shows you the workflows. The templates alone were worth the price.

Marta K. · Compliance lead, fintech

★★★★★

We rolled it out to the whole team.

The teaching style is exactly what compliance training has been missing. We bought 12 seats. Best money we spent in Q1.

Jonas H. · Head of Legal, SaaS

★★★★★

Saved us during a real incident.

Two weeks after finishing the course, we had to apply exactly what we learned. The runbooks and decision trees made it so much easier under pressure.

Amélie D. · Privacy counsel, healthcare

★★★★☆

Dense — in the best way.

Not a beginner course. If you already know the basics, this fills in every gap you didn't know you had. Quizzes are challenging.

Klaus M. · Compliance lead, manufacturing

FAQ

Common questions.

Anything else? Send us a note.

Related courses

Continue your compliance track.

Browse all →

GDPR Masterclass: Building a Culture of Compliance

Master GDPR compliance from data principles to breach response. A comprehensive course with templates, case studies, and certification.

★ 4.745 lessons

Become a DPO: Your Path to Data Protection Leadership

Become a certified Data Protection Officer. Master GDPR compliance, incident management, and organizational leadership in data protection.

★ 4.625 lessons

PDPL compliance essentials

Navigate Saudi Arabia's Personal Data Protection Law - consent requirements, cross-border transfers, breach response, and data subject rights.

★ 4.513 lessons

AI Act: Prohibited Uses

Understand EU AI Act prohibited practices - social scoring, biometric identification, emotion recognition, and manipulation. Know what AI uses are banned.

★ 4.618 lessons

Get this course for your team.

Request access →See plans

DPIA and LIA Training Course