Data Protection Audits

Measuring, assessing and reporting is an integral and continual  part of our data protection officer service and is essential part of ensuring that your data protection programme is effective. As DPO this is a rolling endeavour with specific elements reviewed at different times as required.

Where this is provided as a standalone service we offer this in a compressed timeline for organisations who wish to measure all or part the effectiveness of their existing programme, either as a pro-active validation, or in response to an specific incident.

Our audits use tools on our Knowledge Bank - best practice checklists, record of processing and more plus physical site visits and remote staff interviews to benchmar and make recommendations in a comprehensive report with clear prioritsation.

Our audits can range from a review of a specific process or procedure, through to a thorough assessment of your entire data protection programme where our audit gauges your current compliance against the Data Protection Education (DPE) compliance framework (based on the ICO Accountability Framework).

An audit can take up to 5 days and include some or all of the following:

  • Governance, leadership and oversight
  • Policies and procedures
  • Risk Management
  • Selection and assignment of a data protection officer
  • Data subject rights
  • Data mapping and records of processing
  • Transparency and communication
  • Training and awareness
  • Managing internal and third-party risk
  • Breach management and subject access requests
  • Monitoring and reporting
  • Staff competencies

Contact us today with any questions or for a

Free Consultation

Call us with any questions

0800 0862018

or email us on