GDPR COMPLIANCE audit
Our comprehensive independent GDPR Compliance Audit will detail your current compliance status, with a planned strategic roadmap to enable your organisation to manage continual compliance.
The General Data Protection Regulation (GDPR), Data Protection Act 2018 & PECR has serious implications for any organisation that does not follow the rules when processing any personal data. Data subjects now have full control of their personal information.
With enhanced rights and an emphasis on fairness, transparency, accuracy and security, the GDPR will effectively prevent the unauthorised processing of personal information; in short, people will be empowered.
Audit Overview
We will review the current policy framework to ensure your organisation is compliant with the GDPR legislation. Our Auditor will review and report on your organisation’s current and historical practices and how that impacts under the GDPR.
A full and bespoke interpretation of the principles of data protection in the GDPR relating specifically to your organisation will be established and documented as part of this service.
| Discovery | We will spend time with your various department heads and members of the Senior Management Team to fully understand the interaction between your organisation and its members, supporters and customers. This scoping will ensure that the final report produced for you will cover all areas GDPR within the organisation, something often overlooked, resulting in the organisation finding itself non-compliant and open to vulnerabilities. |
| Data Review | Using data mapping techniques and Privacy Impact Assessments (PIAs), we establish where risk exists and look to strengthen policies, procedures and staff guidelines. Data mapping ensures that however large the volume of data, no areas are left unchecked. One benefit of a full internal data audit is that your organisation has an opportunity to organise its data in a way that may give rise to better marketing and management. |
| Practical Guidance | Our GDPR practitioners will develop clear interpretations of the principles of data protection. Through our scoping, the final report will highlight potential areas of weakness and provide practical recommendations on how to manage significant impacts if any arise. |
| Risk Overview | Our Audit and Report will highlight your compliance status within your organisation. This will include a GAP Analysis with Data Flow Charts to illustrate areas of risk. |
| Cyber Security | Our certified Data Protection Officers understand the GDPR and as part of the review will advise on Cyber security and specialist areas of the law. |
| Policy Framework | We will collate and review all your current policies and procedures which cover every aspect of your organisation’s GDPR compliance plan. |
| Audit and Compliance | Our proposal is to deliver a complete GDPR Audit and Compliance Report to your Senior Management Team. This will deliver your roadmap towards continual GDPR Compliance. |
GDPR AUDIT AND COMPLIANCE PROGRAMME
| Department Auditing | |
| Marketing |  |
| HR | |
| Corporate Governance | |
| IT & Security | |
| Sales / Fundraising | |
| General Office | |
| Process Review |
| Policy Framework |
| Risk Management |
| Breach Communications |
| DPIA Management |
| Staff Awareness |
| Best Practice |
Get in touch
We have a depth of knowledge across Not for Profit, Commercial and Education sectors advising on GDPR and ISO27001 compliance. Get in touch with our experts now.
Contact our team