The Privacy Impact Assessment (PIA) is essential when an organization is intending to implement a large project – such as a new system or merger/acquisition – that may affect business practices and the handling of personal information. The intent of the PIA is threefold: · To determine the current privacy profile · To estimate the privacy profile after the change; and · To complete a compliance check to identify where privacy practices may be negatively impacted by the change