Q1. Take a look at both the PIA Handbook from the UK: CIO link above and the IRS PIA Model from above. Currently, these are a few good examples of what types of generic questions should be part of a Privacy Impact Assessment. The IRS example site has additional examples of PIA documents. Using the links above as a starting place, create a minimum one-page PIA template with generic questions that might be used as a prototype for any type of organization. Include at least two additional sources for PIA information, templates, or guidance.
1 - 2 Pages with Citations in APA Format.
Q2. Ownership: Who in the organization owns PII, and how is the ownership maintained if the organization uses Cloud computing? Who should decide this ownership?