A Data Protection Impact Assessment (DPIA) for AI is the documented analysis you must produce under DSGVO Article 35 before deploying any AI system that processes personal data at scale, particularly when the deployment falls under EU AI Act Annex III high-risk categories (HR, recruitment, performance evaluation, access to essential services). On April 23, 2026, the European Data Protection Board (EDPB) published a standardized DPIA template draft for public consultation. Consultation closes June 9, 2026. The final version, expected Q3 2026, becomes the de-facto reference auditors and national Datenschutzbehörden use to evaluate whether your DPIA is acceptable.
If you have a DPIA on file from 2023 or 2024, it almost certainly does not match the EDPB 2026 structure. The new template adds explicit sections for AI-specific risks (automated decision-making, training data lineage, model drift), tightens the documentation expectations around lawful basis, and requires a named AI risk officer
role for high-risk systems. Your existing DPIA is not invalid, but it will need to be updated before the next audit cycle for any continuing AI deployment.
This guide walks through what changed in the EDPB 2026 draft, which HR-AI deployments specifically require a DPIA (not all do; the threshold matters), the 9 sections every DPIA must now cover, common failure modes auditors flag, and a fill-in-the-blanks step plan you can adapt directly into your own DPIA. It is written for the DPO, HR business partner, or compliance lead who has to produce a defensible DPIA before the next vendor goes live.
If you are starting from zero on EU AI compliance, read our AI governance and compliance EU pillar first for the broader framework; this article is the deep-dive on one specific document.
What Changed in the EDPB 2026 DPIA Template
The EDPB 2026 draft is the first standardized DPIA template explicitly designed for AI systems. The 2017 DPIA guidance (WP248) was general-purpose; the 2026 template carves out AI-specific structure that aligns DSGVO Article 35 with EU AI Act Article 27 (Fundamental Rights Impact Assessment). Three changes matter most.
Change 1: AI-specific risk taxonomy. Section 4 of the new template explicitly enumerates AI risks (automated decision-making, profiling, training data bias, model drift, prompt injection, data leakage through model outputs). Generic privacy risks (unauthorized access, retention, transfer) move to Section 3. This separation matters because auditors can now ask show me your Section 4
and immediately know whether you assessed the AI-specific surface.
Change 2: Training data lineage requirement. Section 5 (new) requires documenting the training data your AI model was trained on, including provenance, licensing, and any synthetic data generation. For most enterprise AI buyers who deploy vendor models, this means the AVV with the vendor must include training-data disclosure. Vendors who cannot answer what data was your model trained on
fail this section by proxy.
Change 3: Named AI risk officer. Section 9 requires a named individual (not just the DPO
) who owns the AI risk register, signs off on changes, and produces evidence for audit. For HR-AI, this is often the HR business partner plus the DPO co-signing. For smaller orgs, the DPO may hold both roles, but the role must be documented.
When You Need a DPIA for AI
| AI deployment | DPIA required? | Reason |
|---|---|---|
| Recruitment / candidate screening AI | Yes | Annex III high-risk; automated decision-making affecting natural persons |
| Performance evaluation AI | Yes | Annex III high-risk; affects work-related decisions |
| Employee engagement / pulse surveys with AI analysis | if individual-level results | Large-scale personal data processing; profiling potential |
| AI coaching chat (1-on-1 with employee) | Yes | Sensitive context, free-text personal disclosures, potential profiling |
| Team-aggregate analytics (no individual identification) | Often not, if truly aggregated and irreversible | Anonymized data falls outside DSGVO; threshold is irreversibility |
| AI-assisted internal documentation (no employee profiling) | Usually not | No personal data at scale; standard processing |
| Public-facing customer chatbot | Depends on data captured and retention | Often yes if email/phone/account linkage; consult DPO |
Run a Free AI Governance Assessment
Map your AI deployments against DPIA triggers, EU AI Act Annex III, and the EDPB 2026 template. 8 minutes, structured AI report, no signup. Finds where your existing DPIAs fall short of the new standard.
The 9 Sections of the EDPB 2026 DPIA Template
Every DPIA produced after Q3 2026 should follow the 9-section structure. The structure is not strictly mandatory yet (only DSGVO Art. 35 minimum requirements are), but auditors will use the EDPB template as the reference and any DPIA that does not align will trigger follow-up questions. The 9 sections are below; each one is the named field auditors will ask for.
The template is filled in order. Sections 1-3 describe the system; Sections 4-6 assess risks; Sections 7-9 document mitigations and ownership. Most organizations underweight Sections 4-5 (AI-specific risks and training data) because the 2017 guidance did not separate them clearly. Auditors in 2026 expect them populated.
Section 1: System and processing description
Name the AI system, its purpose, the categories of personal data processed, the data subjects (employees, candidates, customers), the lawful basis under DSGVO Art. 6, and the retention period. Most DPIAs are too brief here; auditors want 2-3 paragraphs minimum.
Section 2: Necessity and proportionality
Justify why AI is necessary for this purpose and why a less intrusive method would not work. We want to use AI
is not necessity. Manual screening of 5000 applications per quarter is operationally infeasible and produces inconsistent results
is.
Section 3: Generic privacy risks
Unauthorized access, retention beyond purpose, third-country transfer (Schrems II), excessive collection. For each risk, name the likelihood (low/medium/high) and impact (low/medium/high). The matrix is what auditors photograph.
Section 4: AI-specific risks (NEW in 2026)
Automated decision-making (Art. 22), profiling, training data bias, model drift, prompt injection, data leakage through model outputs. The newest section and the most-failed one. Each risk needs likelihood + impact + a planned mitigation.
Section 5: Training data lineage (NEW in 2026)
What data was the model trained on? Where did it come from? Was it licensed, scraped, or synthetic? For enterprise AI buyers who deploy vendor models, this section depends on the vendor's AVV disclosure. If the vendor refuses to disclose, you cannot fully complete this section, and that is an audit finding.
Section 6: Rights of data subjects
How do affected individuals exercise access, rectification, erasure, objection, and the right not to be subject to automated decisions (Art. 22)? Name the process and the response time. Email our DPO
is not enough; you need a documented flow.
Section 7: Mitigation measures
For each risk identified in Sections 3-4, name the specific control. Per-row ACL, recipient scope guard, snapshot guard against bulk-update hallucination, human-in-the-loop for high-impact decisions. We trust the vendor
is not a control.
Section 8: Residual risk and acceptance
After mitigations, what risk remains? Who in the organization formally accepts that residual risk? This is a sign-off section; the named person becomes the accountability anchor. For high-risk AI under Annex III, a senior leadership signature is expected.
Section 9: Named AI risk officer + review cycle (NEW in 2026)
Who owns this DPIA after publication? What is the review cycle (annual minimum, faster for high-risk)? What triggers an out-of-cycle review (vendor change, regulatory change, incident)? Without a named owner, the DPIA decays into a binder nobody updates.
5 Common DPIA Failure Modes Auditors Flag
Solid DPIA practices
Sections 4-5 fully populated with AI-specific risks and training-data lineage
Each Section 7 mitigation maps to a specific Section 3-4 risk by line item
Named Section 9 owner with documented review cycle and trigger events
AVV with vendor includes training-data disclosure clause
Senior leadership signature on Section 8 residual risk acceptance
DPIA reviewed at least annually, faster on vendor or regulatory change
DPIA failure modes
Section 4 left blank or filled with generic privacy risks
Section 5 training data:
proprietary vendor model
(not enough)Section 7 mitigations are policy promises ('we trust',
we review
) without controlsSection 9
the DPO
as owner (too generic; specific person needed)DPIA from 2023 never updated even though vendor changed twice
No documented Art. 22 process for affected individuals to object to automated decisions
The most common failure: Section 5 training-data lineage left blank because the vendor would not disclose. This is not optional. If your vendor refuses to disclose training-data provenance, you have a choice: (a) document the refusal in Section 5 and accept the audit finding, or (b) switch vendors. Hiding the gap is worse than naming it. EDPB auditors prefer we asked, the vendor refused, here is the residual risk
over N/A
.
Run an AI Readiness Check
Test where your AI deployments stand on DPIA readiness, AVV completeness, and Annex III classification. Free 8-minute assessment with structured AI report.
The Bottom Line
The EDPB 2026 DPIA template is not strictly mandatory until the final version lands in Q3 2026, but treating it as advisory is a mistake. Auditors will use it as the reference from publication onward; your existing DPIAs will be compared against it; and the gaps will produce findings. The cost of updating an existing DPIA to the 9-section structure is a few days of focused work per deployment; the cost of waiting until an auditor finds the gap is multiples of that, plus reputation.
If you have HR-AI in production today, the work to do this quarter is straightforward: pull every existing DPIA, map it section-by-section against the 2026 structure, fill the gaps (especially Sections 4, 5, and 9), and re-circulate for the named owner's signature. If you are evaluating a new AI vendor, demand training-data disclosure in the AVV before signing. The vendor who refuses is the vendor whose DPIA you cannot complete.
Watch the EDPB consultation page until June 9, 2026 — public comments often shape the final structure. If your DPO has not submitted feedback yet, this is the window. After June 9, the structure is locked, the final version drops Q3, and your DPIAs need to match.
Key Takeaways
1. EDPB DPIA template consultation closes June 9, 2026. Final version Q3 2026. Auditors will use it as the reference. Your 2023 DPIAs do not match.
2. Three new sections matter most. AI-specific risk taxonomy (Section 4), training-data lineage (Section 5), named AI risk officer + review cycle (Section 9). Underweighting these is the most common audit finding.
3. Section 5 demands vendor disclosure. Training data must be documented. Vendors who refuse to disclose force you to document the refusal in Section 5; hiding the gap is worse than naming it.
4. HR-AI almost always needs a DPIA. Recruitment, performance evaluation, AI coaching, individual-level analytics. Annex III triggers DPIA by default. Team-aggregate-only analytics may not.
5. Update existing DPIAs this quarter. Cost: a few days per deployment. Cost of waiting: multiples plus reputation.
![GDPR & EU AI Act: The Compliance Checklist for AI Team Assistants [2026]](https://www.teamazing.com/wp-content/uploads/2026/03/ai-governance-in-companies.jpg)
![Employee AI Trust: The Line Between Development and Surveillance [2026]](https://www.teamazing.com/wp-content/uploads/2026/04/employee-ai-trust-confidentiality.jpg)
