Assessment of risks to personal data processing; required under GDPR for high-risk processing (e.g., large-scale health data).
DPIA for safety database holding EU patient data.
GDPR Art 35