Data Protection Audit
The Data Protection Audit is highly recommended for organisations as a self-check to:
- assess their level of compliance with the Data Protection legislation
- identify improvements to be made to ensure that the Data Protection legislative requirements are met
- verify that there is a formal data protection system in place following best practices
- identify strengths and areas where data protection practices are to be commended
The audit is conducted by one/more of our consultants and involves:
- The identification of types of information collected by the client
- The review of every type of processing of personal data performed by the client
- The examination of the availability of and the provision for the exercise of the data subjects’ rights
- The examination of disclosure of personal data
- The examination of disclosure of personal data abroad
- The examination of data protection documentation
- The examination of the fulfillment of the registration duty
The audit requires Lee & White to have complete access to all relevant documentation and processes of personal data. Interviews with our client’s relevant members of staff will also be carried out. The Data Protection Audit will be carried out on location and in our office, where necessary.
A report will then be produced containing the findings of the audit with the necessary recommendations for compliance at different stages.
For companies with websites carrying out the Data Protection Audit, the Website Audit is included in this performance.