The Information Commissioner’s Office has published its sample mobile game Data Protection Impact Assessment (DPIA).
This document is intended as an example of good practice to help companies creating mobile gaming apps for use by children in the UK.
It has been designed to help you to understand and apply the ICO’s Children’s code, formally known as the Age-appropriate design code.
It specifically applies to Standard 2 of the code, which relates to the need for DPIAs for Information Society Services likely to be accessed by children in the UK.
This sample DPIA is adapted from the ICO’s DPIA template, and follows the process set out in our DPIA guidance and the code. You should read it alongside the code’s DPIA guidance, and the Criteria for an acceptable DPIA set out in European guidelines.
The ICO welcomes recommendations for improvements or other feedback on this sample DPIA. Please email your comments to firstname.lastname@example.org.