Personal data security audit of your business
AFRAID OF AN INSPECTION BY AN AUTHORITY, HEFTY FINANCIAL PENALTIES AND LOSS OF BUSINESS REPUTATION?
CONCERNED ABOUT YOUR COMPANY’S SAFETY AND COMPLIANCE WITH THE GDPR?
NOT SURE WHETHER THE GDPR HAS BEEN IMPLEMENTED CORRECTLY?
WANT TO IMPLEMENT THE GDPR TO FEEL SAFE AND STOP WORRYING ABOUT IT?
The audit should cover the policies, procedures, oversight system and responsibility with regard to data protection across the organisation.
Under the GDPR, organisations are required to use a risk-based approach to implement appropriate technical and organisational safeguards.
The GDPR sets out a requirement to prove the implementation of protection processes and to document them in the form of a personal data protection policy, data breach notification procedure, instructions, and procedures.
OBLIGATIONS OF EMPLOYEES
The GDPR compliance audit verifies how roles and responsibilities are reflected in actual workflows, as well as reviews employee onboarding and offboarding processes.
How do we conduct a GDPR Compliance Audit?
The audit is carried out by a certified Data Protection Officer.
GDPR COMPLIANCE AUDIT PROCESS:
WE VERIFY WHETHER A PROPER SECURITY POLICY FOR DATA PROCESSING IS IN PLACE
WE VERIFY WHETHER THE COMPANY KEEPS UP-TO-DATE RECORDS OF AUTHORISATIONS TO PROCESS DATA
WE VERIFY WHETHER THE COMPANY’S EMPLOYEES HAVE THE NECESSARY TRAINING, AUTHORISATIONS AND CERTIFICATES
WE VERIFY WHETHER ADEQUATE DATA PROTECTION PROCEDURES AND INSTRUCTIONS HAVE BEEN PUT IN PLACE
WE CHECK WHETHER INFORMATION SECURITY PRINCIPLES ARE FOLLOWED IN PRACTICE BY INTERVIEWING STAFF
WE PREPARE AN AUDIT REPORT WITH RECOMMENDATIONS AND ASSIST IN IMPLEMENTING THE GDPR
Factors influencing the quality of a GDPR compliance audit
Is there a recipe for a high quality GDPR compliance audit? We know how to build a solid foundation for a well-conducted audit.