Privacy impact assessment: Its origins and development

Computer Law and Security Review

Volumn 25, Issue 2, 2009, Pages 123-135

  Clarke, Roger ^a,b  

^a Xamax Consultancy Pty Ltd   (Australia)

^b CLSR Editorial Board ^*  (Australia)

Author keywords

Data matching program protocol; Privacy; Privacy impact; Privacy impact statement; Privacy strategy; Technology assessment

Indexed keywords

DATA MATCHING PROGRAM PROTOCOL; PRIVACY; PRIVACY IMPACT; PRIVACY IMPACT STATEMENT; PRIVACY STRATEGY; TECHNOLOGY ASSESSMENT;

LAWS AND LEGISLATION; PUBLIC RISKS; TECHNOLOGICAL FORECASTING;

TECHNOLOGY;

EID: 63849328022     PISSN: 02673649     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.clsr.2009.02.002     Document Type: Article

References (89)

1. ANSI. Privacy impact assessment standard (2004), American National Standards Institute ANSI X9.99:2004
2. APEC. APEC privacy framework (2005), Asia-Pacific Economic Cooperation. Available at: http://www.apec.org/apec/apec_groups/committees/committee_on_trade/elect ronic_commerce.MedialibDownload.v1.html?url=/etc/medialib/apec_media_lib rary/downloads/taskforce/ecsg/pubs/2005.Par.0001.File.v1.1
3. Becker H., and Vanclay F. The international handbook of social impact assessment (2003), Edward Elgar, Cheltenham
4. Bennett C.J. Regulating privacy: data protection and public policy in Europe and the United States (1992), Cornell University Press, Ithaca
5. Bennett C.J., and Raab C.D. The governance of privacy: policy instruments in global perspective (2006), MIT Press, Cambridge
6. Bloomfield S. The role of the privacy impact assessment (2004), Office of the Privacy Commissioner of Canada. http://www.privcom.gc.ca/speech/2004/sp-d_040310_e.asp Available at:
7. Bygrave L. Data protection law: approaching its rationale, logic and limits (2002), Kluwer Law International
8. BC. Privacy Impact Assessment Process (PIA). Victoria BC: Ministry of Labour and Citizens' Services; 2006. Available at: http://www.cio.gov.bc.ca/services/privacy/Public_Sector/pia/default.asp.
9. Carter M. Integrated electronic health records and patient privacy: possible benefits but real dangers. Medical Journal of Australia 172 (January 2000) 28-30. http://www.mja.com.au/public/issues/172_01_030100/carter/carter.html Available at:
10. Clarke R. Information technology and dataveillance. Communications of the ACM 31 5 (May 1988) 498-512. http://www.anu.edu.au/people/Roger.Clarke/DV/CACM88.html Available at:
11. Clarke R. Computer matching by government agencies: the failure of cost/benefit analysis as a control mechanism. Informatization and the Public Sector (1995). Available at: http://www.anu.edu.au/people/Roger.Clarke/DV/MatchCBA.html#CBA
12. Clarke R. A normative regulatory framework for computer matching. Computer & Information Law XIII 4 (1995) 585-633. http://www.anu.edu.au/people/Roger.Clarke/DV/MatchFrame.html Available at:
13. Clarke R. Privacy and dataveillance, and organisational strategy. In: Proc. Conf. I.S. Audit & Control Association (EDPAC'96), Perth, 28 May 1996. Available at: http://www.anu.edu.au/people/Roger.Clarke/DV/PStrat.html.
14. Clarke R. Privacy impact assessments (1998), Xamax Consultancy Pty Ltd. http://www.anu.edu.au/people/Roger.Clarke/DV/PIA.html Available at:
15. Clarke R. Privacy impact assessments (1998), Xamax Consultancy Pty Ltd. http://www.xamax.com.au/DV/PIA.html Available at:
16. Daniel M., Webber M.J., and Wigan M.R. Social impacts of new technologies for traffic management (1990), Australian Road Research Board Research Report ARR 184
17. DPCIE. Biometrics in the workplace (2007), Data Protection Commissioner of Ireland. http://www.dataprotection.ie/docs/Biometrics_in_the_workplace./244.htm Available at:
18. DPOF. Privacy impact assessment. Presentation slides (August, 2007), Data Protection Ombudsman of Finland Slide 15
19. Dixon T. Communications Law Centre wants IPPs revised in line with Australian Privacy Charter. Privacy Law and Policy Reporter 3, 9 (January 1997) 4. Available at: http://www.austlii.edu.au/au/journals/PLPR/1997/4.html.
20. EU. Directive on the protection of individuals with regard to the processing of personal data and on the free movement of such data. Directive 95/46/EC. Official Journal L 281 (1995) 31-50. http://ec.europa.eu/justice_home/fsj/privacy/law/index_en.htm Available at:
21. Flaherty D. Protecting privacy in surveillance societies (1989), University of North Carolina Press
22. Flaherty D.H. Submission to industry Canada re the information highway. In particular Appendix A. Available at: (December 1994). http://www.oipcbc.org/publications/other/Industry-Canada.html [link active in 2004, but broken in 2007]
23. Flaherty D.H. Provincial identity cards: a privacy-impact assessment. Available at: (September 1995). http://www.oipcbc.org/publications/presentations/identity_cards.html [broken link at 4 February 2004]
24. Flaherty D. An investigation concerning the disclosure of personal information through public property registries (31 March 1998), Office of the Information and Privacy Commissioner of British Columbia. http://www.oipcbc.org/investigations/reports/invrpt11.html Investigation P98-011. Available at:
25. Flaherty DH. Privacy impact assessments: an essential tool for data protection. In: A presentation to a plenary session on "New technologies, security and freedom," at the 22nd annual meeting of privacy and data protection officials held in Venice, September 27-30, 2000; October 2000. Reprinted in Privacy Law & Policy Reporter November 2000;7(5):85-90. Available at: http://www.austlii.edu.au/au/journals/PLPR/2000/45.html. Revised version in Perrin S, Black H, Flaherty DH, Rankin TM. The personal information protection and electronic documents act. Toronto: Irwin Law; 2001.
26. Harding E. Privacy impact assessment and commentary on the mental health information project (February 1999), New Zealand Health Information Service. http://www.anu.edu.au/people/Roger.Clarke/DV/NZMentalHlthPIA-9902.html Mirrored at: http://www.anu.edu.au/people/Roger.Clarke/DV/NZMentalHlthPIA-9902.html
27. HealthBC. Sample privacy impact statement (1997), British Columbia Ministry of Health. http://www.hlth.gov.bc.ca/him/bc/sc/impact.html [broken link at 4 February 2004]
28. HEW. Records, computers and the rights of citizens. U.S. Dept. of Health, Education and Welfare, Secretary's Advisory Committee on Automated Personal Data Systems (1973), MIT Press, Cambridge. Mass. http://aspe.os.dhhs.gov/datacncl/1973privacy/tocprefacemembers.htm Available at:
29. Hoffman L. Security and privacy in computer systems (1973), Melville Publishing Co. (A Division of Wiley), Los Angeles, California
30. HRDC. HRDC dismantles longitudinal labour force file databank (29 May 2000), Human Resources and Social Development Canada. http://www.hrsdc.gc.ca/en/cs/comm/news/2000/000529_e.shtml Available at:
31. IAIA. Principles of environmental impact assessment best practice practice (January 1999), International Association for Impact Assessment, in Cooperation with U.K. Institute of Environmental Assessment. http://www.iaia.org/Members/Publications/Guidelines_Principles/Principle s%20of%20IA.PDF Available at:
32. IAIA. Social impact assessment: international principles (May 2003), International Association for Impact Assessment. http://www.iaia.org/Members/Publications/Guidelines_Principles/SP2.pdf Available at:
33. ICO. Privacy impact assessments: international study of their application and effects (2007), Information Commissioner's Office, Wilmslow, U.K. http://www.ico.gov.uk/Home/about_us/research/data_protection.aspx Available at:
34. ICO. Privacy impact assessment handbook (2007), Information Commissioner's Office, Wilmslow, U.K. http://www.ico.gov.uk/upload/documents/pia_handbook_html/html/1-intro.ht ml Available at:
35. IOCSIA. Guidelines and principles for social impact assessment. (U.S. Department of Commerce, National Oceanic and Atmospheric Administration, and National Marine Fisheries Service) (May 1994), Interorganizational Committee on Guidelines and Principles for Social Impact Assessment. http://www.iaia.org/Members/Publications/Guidelines_Principles/SIA%20Gui de.PDF Available at:
36. IPCO. Smart cards (April 1993), Information and Privacy Commissioner/Ontario. Available at: http://www.ipc.on.ca/index.asp?navid=46&fid1=331&fid2=4
37. IPCO. Suggested changes to the municipal freedom of information and protection of privacy act: submission to the standing committee on the legislative assembly (January 1994), Information and Privacy Commissioner/Ontario. Available at: http://www.ipc.on.ca/index.asp?layid=86&fid1=227
38. IPCO. Eyes on the road: intelligent transportation systems and your privacy (March 1995), Information and Privacy Commissioner/Ontario. http://www.ipc.on.ca/web_site.eng/matters/sum_pap/papers/its-e.htm [broken link at 4 February 2004]
39. IPCO. Appendix to 'Geographic information systems' (April 1997), Information and Privacy Commissioner/Ontario. http://www.ipc.on.ca/images/Resources/gis.pdf and mirrored in Clarke (1998a,b)
40. IPCO/ACTA. Smart, optical and other advanced cards: how to do a privacy assessment (September 1997), Information and Privacy Commissioner/Ontario and Advanced Card Technology Association of Canada. http://www.ipc.on.ca/images/Resources/up-cards.pdf Available at:
41. IPCO/ACTA. Multi-application smart cards: how to do a privacy assessment (August 2000), Information and Privacy Commissioner/Ontario and Advanced Card Technology Association of Canada. Available at: http://www.ipc.on.ca/index.asp?navid=46&fid1=414&fid2=4
42. IRS. IRS privacy impact assessment (December 1996), Office of the Privacy Advocate, Internal Revenue Service. http://www.cio.gov/Documents/pia_for_it_irs_model.pdf Version 1.3, as adopted by the [U.S.] CIO Council in February 2000. Available at:
43. ISO/IEC JTC-1 SC-27 WG-5. Identity management and privacy technologies committee. Listed at:. http://www.iso.org/iso/standards_development/technical_committees/list_o f_iso_technical_committees/iso_technical_committee.htm?commid=45306
44. Karol T.J. Cross-border privacy impact assessments: an introduction. Information Systems Control Journal 3 (March 2001). Available at: http://www.isaca.org/Template.cfm?Section=Home&CONTENTID=17226&T EMPLATE=/ContentManagement/ContentDisplay.cfm
45. Kenny S., and Borking J. The value of privacy engineering. Refereed article. The Journal of Information, Law and Technology (JILT) 2002 1 (2002). Available at: http://www2.warwick.ac.uk/fac/soc/law/elj/jilt/2002_1/kenny/
46. Longworth L. Telecommunications and privacy issues (1992) Report for the N.Z. Ministry of Commerce
47. Longworth E. Notes on privacy impact assessments (13 June 1996), Privacy Issues Forum, Christchurch, NZ in NZPC (1997)
48. Marcella A.J., and Stucki C. Privacy handbook: guidelines, exposures, policy implementation, and international issues (2003), Wiley
49. MBS. Privacy impact assessment guidelines. Revised 2001 (1999), Management Board Secretariat, Government of Ontario. http://www.accessandprivacy.gov.on.ca/english/pia/index.html Available at:
50. NSWPC. Guidelines for the operation of personal data systems (April 1977), N.S.W. Privacy Committee, Sydney. http://www.anu.edu.au/people/Roger.Clarke/DV/NSWPCGs.html Document BP31. Available at:
51. NZPC. A compilation of materials in relation to privacy impact assessment (1997), New Zealand Privacy Commissioner
52. NZPC. Privacy impact assessment handbook (March 2002), Office of the New Zealand Privacy Commissioner. Available at: http://www.privacy.org.nz/privacy-impact-assessment-handbook/
53. OECD. Guidelines on the protection of privacy and transborder flows of personal data (1980), Organisation for Economic Cooperation and Development, Paris. http://www.oecd.org/document/18/0,3343,en_2649_201185_1815186_1_1_1_1,00 .html Available at:
54. OFPC. The use of data matching in commonwealth administration - guidelines (1992), Office of the Federal Privacy Commissioner. http://www.privacy.gov.au/publications/dmcomadmin.pdf Rev. February 1998. Available at:
55. OFPC. Privacy and public key infrastructure: guidelines for agencies using PKI to communicate or transact with individuals (December 2001), Office of the Federal Privacy Commissioner. http://www.privacy.gov.au/publications/pki.doc Available at:
56. OFPC. Privacy impact assessment guide (August 2006), Office of the Federal Privacy Commissioner. http://www.privacy.gov.au/publications/PIA06.pdf Available at:
57. OIPC-AB. Privacy impact assessment: instructions and annotated questionnaire (January 2001), Office of the Information and Privacy Commissioner Alberta, Canada. http://www.oipc.ab.ca/ims/client/upload/pia-instructions-1.1.pdf Available at:
58. OPCC. Assessing the privacy impacts of programs, plans, and policies (October 2007), Office of the Privacy Commissioner of Canada. http://www.privcom.gc.ca/information/pub/ar-vr/pia_200710_e.pdf Available at:
59. OTA. Technology assessment in business and government (January 1977), Office of Technology Assessment. NTIS order #PB-273164. Available at: http://www.princeton.edu/∼ota/disk3/1977/7711/7711.PDF
60. OVPC. Privacy impact assessments - a guide (August 2004), Office of the Victorian Privacy Commissioner. Available at: http://www.privacy.vic.gov.au/dir100/priweb.nsf/download/FFC52F3B3A208C3 4CA256EF800819403/$FILE/OVPC_PIA_Guide_August_2004.pdf
61. Pacific Privacy. Hong Kong special administrative region identity card project - report on initial privacy impact assessment (November 2000), Pacific Privacy Pty Ltd. http://www.legco.gov.hk/yr00-01/english/fc/esc/papers/esc27e1.pdf Available at:
62. Porter A.L., Rossini F.A., and Carpenter S.R. A guidebook for technology assessment and impact analysis (1980), Elsevier
63. PPSC. Personal privacy in an information society. Privacy Protection Study Commission (July 1977), U.S. Government Printing Office, Washington, D.C. Available at: http://epic.org/privacy/ppsc1977report/, http://aspe.hhs.gov/datacncl/1977privacy/toc.htm
64. Raab C. The future of privacy protection (2004), Office of Science and Technology, London. http://www.foresight.gov.uk/Previous_Projects/Cyber_Trust_and_Crime_Prev ention/Reports_and_Publications/The_Future_of_Privacy_Protection/The_Fut ure_of_Privacy_Protection.html Available at:
65. Rule J.B. Private lives and public surveillance: social control in the computer age (1974), Schocken Books
66. Rule J.B., McAdam D., Stearns L., and Uglow D. The politics of privacy (1980), New American Library
67. SA. Privacy compliance: privacy impact assessments (2005), Service Alberta. Available at: http://foip.gov.ab.ca/resources/guidelinespractices/chapter9.cfm#9.3
68. SSNYPSC. Statement of policy on privacy in telecommunications (22 March 1991), State of New York Public Service Commission Reprinted in Information and Privacy Commissioner of Ontario submission to the Ontario Telephone Service Commission 'Privacy and Telecommunications', September 1992
69. Stewart B. Privacy impact assessments. Privacy Law & Policy Reporter 3 4 (1996) 61-64. http://www.austlii.edu.au/cgi-bin/disp.pl/au/journals/PLPR/1996/39.html Available at:
70. Stewart B. PIAs - an early warning system. Privacy Law & Policy Reporter 3 7 (1996) 134-138. http://www.austlii.edu.au/cgi-bin/disp.pl/au/journals/PLPR/1996/65.html Available at:
71. Stewart B. Privacy impact assessment: towards a better informed process for evaluating privacy issues arising from new technologies. Privacy Law & Policy Reporter 5 8 (February 1999) 147-149. http://www.austlii.edu.au/cgi-bin/disp.pl/au/journals/PLPR/1999/8.html Available at:
72. Stewart B. Privacy impact assessment: some approaches, issues and examples. Proc. Conf. Privacy (2001), N.Z. Privacy Commissioner
73. Stewart B. Privacy impact assessment roundup. Privacy Law & Policy Reporter 9 5 (October 2002) 90-91. http://www.austlii.edu.au/au/journals/PLPR/2002/41.html Available at:
74. TBC. Privacy impact assessment policy (2002), Treasury Board of Canada Secretariat. http://www.tbs-sct.gc.ca/pubs_pol/ciopubs/pia-pefr/paip-pefr_e.asp Available at:
75. TBC. Privacy impact assessment guidelines: a framework to manage privacy risks (2002), Treasury Board of Canada Secretariat. http://www.tbs-sct.gc.ca/pubs_pol/ciopubs/pia-pefr/paipg-pefrld_e.asp Available at:
76. TBC. Privacy impact assessment (PIA) e-learning tool (October 2003), Treasury Board Secretariat, Ottawa. http://www.tbs-sct.gc.ca/pgol-pged/piatp-pfefvp/index_e.asp Available at:
77. UKCO. Privacy and data-sharing: the way forward for public services: Annex D: the analytical framework and privacy impact assessments (April 2002), UK Cabinet Office Strategy Unit. http://www.piu.gov.uk/2002/privacy/report/annex-d.htm [Annex D was at: http://www.piu.gov.uk/2002/privacy/report/annex-d.htm, link active in 2004, but broken in 2008]
78. UNEP. Environmental impact assessment training resource manual. 2nd ed. (June 2002), United Nations Economics and Trade Programme. http://www.unep.ch/etu/publications/EIAMan_2edition_toc.htm Available at:
79. Uni Alberta. Privacy impact assessment model (1 April 1998), University of Alberta. http://www.ualberta.ca/FOIPP/mud/s212a.htm [link active in 2007, but broken in 2008]
80. USDOC. Safe harbor (2000), U.S. Department of Commerce. http://www.export.gov/safeharbor/sh_documents.html Available at:
81. USDOI. Privacy impact assessment and guide (July 2002), Department of the Interior. http://www.doi.gov/ocio/privacy/Privacy_Impact_Assessment_9_16_02.doc Available at:
82. USDOJ. Privacy impact assessment for justice information systems (August 2000). http://www.ojp.usdoj.gov/archive/topics/integratedjustice/piajis.htm [link active in 2004, but broken in 2008]
83. US OMB. E-Government Act Section 208 Implementation Guidance. Washington DC: Office of Management and Budget; September 26, 2003. Available at: http://www.whitehouse.gov/omb/memoranda/m03-22.html.
84. US DHS. Privacy Impact Assessments - Official Guidance. Washington DC: Department of Homeland Security; May 2007. Available at: http://www.dhs.gov/xlibrary/assets/privacy/privacy_pia_guidance_may2007. pdf.
85. Warren A., Bayley R., Bennett C., Charlesworth A., Clarke R., and Oppenheim C. Privacy impact assessments: international experience as a basis for UK guidance. Computer Law & Security Report 24 3 (April-June 2008) 233-242
86. Waters N. Privacy impact assessment - traps for the unwary. Privacy Law & Policy Reporter 7 9 (February 2001) 176. http://www.austlii.edu.au/au/journals/PLPR/2001/10.html Available at:
87. Westin A.F. Privacy and freedom (1967), Atheneum
88. In: Westin A.F. (Ed). Information technology in a democracy (1971), Harvard University Press, Cambridge, Mass
89. Westin A.F., and Baker M.A. Databanks in a free society: computers, record-keeping and privacy (1974), Quadrangle