Internal Audit Foundation and Crowe Report, “Privacy and Data Protection, Part 2”

Internal Auditors’ Views on Risks, Responsibilities, and Opportunities

Communications Mar 01, 2022

Sharpen Your POV to Add Value

The Internal Audit Foundation has released a new report in collaboration with Crowe, “Privacy and Data Protection, Part 2: Internal Auditors’ Views on Risks, Responsibilities, and Opportunities.” This second report in a three-part series reveals a number of potentially valuable opportunities for internal auditors to take an earlier, proactive role in helping to recognize, manage, and mitigate these risks, while still fulfilling their role as defined by the International Professional Practices Framework.

In order to create the report, The IIA, Foundation, and Crowe conducted a survey among chief audit executives (CAEs) and audit directors to develop a better understanding of organizations’ data protection policies and practices. Survey responses suggest that a number of likely opportunities exist where internal auditors could add value to their enterprises, while also building, developing, or strengthening critical relationships with peers elsewhere in their organizations. The simplest way to explain the results of the survey is that internal audit needs to take a more active leadership role in mitigating data privacy risk.

Further, the purpose of this report is to present the findings of the surveys and field interviews to examine how internal audit as a profession is responding to privacy and data protection issues.

Detailed examination of the results provided a number of insights that internal audit professionals can use to reflect on their own organizations’ preparedness and effectiveness in managing risks associated with privacy and data protection.

Key takeaways include:

Data privacy roles and responsibilities.
Data privacy as a material risk.
Internal auditors’ views of program effectiveness.
Internal auditors’ most critical concerns.
How internal auditors can add value.

To learn more about how to sharpen your privacy and data protection point of view to add even more value to your organization, download the report now.

Additional Privacy & Data Protection Resources

Virtual Conference

The 2022 Data Privacy & Ethics Virtual Conference, taking place Thursday, April 28, 2022, is part of a series of one-day conferences designed to help internal auditors stay ahead of critical issues and be more responsive in their work. Upskill your knowledge in data privacy and ethics while earning up to 6.6 CPEs. Learn more.

Related Research Report

Privacy and Data Protection Part 1: Internal Audit's Role in Establishing a Resilient Framework

Internal Auditor Magazine

Targeting Fraud With Data Analytics by Alisanne Gilmore Allen, CIA, CRMA, CFE, CISA

Feb. 21, 2022

Recommended Guidance

Communication Archive

Press Release | Aug 12, 2022

2022 Governance, Risk, and Control Conference Will Provide a Forward-Thinking Learning Experience for IS/IT Professionals of All Experience Levels

The Institute of Internal Auditors (IIA) – the internal audit profession's leader in standards, certification, education, research, and technical guidance worldwide – is partnering with ISACA for the annual Governance, Risk, and Control (GRC) Conference.

NewsRelease | Aug 02, 2022

The IIA Announces Free Webinar on IPPF Evolution

The IIA kicked off the IPPF Evolution project in 2021, with an objective to modernize and transform the IIA Standards and ensure their relevance and responsiveness to today's challenges.

NewsRelease | Jul 22, 2022

2022 Building Awareness Champions

Congratulations to our 2022 Building Awareness Champions!

Press Release | Jul 21, 2022

Institute of Internal Auditors Announces New Global Board Chairman; Concludes 2022 International Conference

IIA brings together more than 2,200 global internal audit leaders to discuss emerging risks and opportunities; focuses on cybersecurity, ESG, diversity and inclusion, artificial intelligence, and more

Press Release | Jul 19, 2022

IIA Debuts New Global Research; Announces Professional Achievement Awards at 2022 International Conference

During the first day of its annual International Conference, The Institute of Internal Auditors (IIA) – the internal audit profession's leader in standards, certification, education, research, and technical guidance worldwide – introduced two new global reports in front of an audience of roughly 1,500 internal audit professionals from around the world.

NewsRelease | Jul 19, 2022

NEW Issue of Tone at the Top — Internal Audit and the Board’s ESG Committee

Urgency to act on ESG Demands Independent Assurance

Communications | Jul 18, 2022

IIA Professional Achievement Awards 2022

Communications | Jul 15, 2022

IIA Names New Global Board Chair

NewsRelease | Jul 15, 2022

The IIA Releases New Practice Guide for the Public Sector

Communications | Jul 14, 2022

The IIA and World Business Council for Sustainable Development release new ESG paper.

Communications | Jul 07, 2022

The IIA’s Annual Business Meeting, July 20, 2022

Press Release | Jun 30, 2022

Institute of Internal Auditors Applauds Court Ruling to Pause Termination of Baltimore County Public School Chief Auditor

Communications | Jun 28, 2022

The IIA Releases NEW Global Knowledge Brief on Cybersecurity

Communications | Jun 28, 2022

The IIA Releases Updated Practice Guide on Capital Adequacy and Stress Testing

Communications | May 27, 2022

The IIA Releases Updated Practice Guide on Assessing Fraud Risk Governance and Management

Since the original edition of The IIA’s practice guide, “Internal Audit and Fraud” was released in 2009, the fraud risk landscape has changed dramatically. The evolution of technology and sophistication of bad actors continues to open new avenues for fraud.

Communications | May 26, 2022

NEW Issue of Tone at the Top — Risk Considerations for Boards

As boards consider how to operate in a riskier world, they should recognize that internal audit is a powerful tool that can help directors protect their organizations from a wide array of current and emerging risks. Most specifically, it’s important to examine priorities for how internal audit and audit plans are being used.

Communications | May 20, 2022

The IIA Releases New Cybersecurity GTAG

Auditing Cybersecurity Operations: Prevention and Detection

Communications | May 19, 2022

IIA Members Receive 20% Off CIA or CRMA Application and Exam Registration Fees Throughout May

Press Release | May 18, 2022

COSO Seeking New Board Chair

Applications Are Being Accepted Through June 30, 2022

Press Release | May 16, 2022

NEW! Recognizing and Mitigating Cognitive Biases: A Threat to Objectivity

Say Hello & Goodbye to Cognitive Biases

Press Release | May 16, 2022

NEW! Internal Audit Foundation release, “Third-Party Risk Management: A Practical Guide”

Introducing a Great Third-Party Risk Guide to Grasp the Essentials

Press Release | May 06, 2022

May is Internal Audit Awareness Month

Press Release | May 05, 2022

May is a great month for future CIAs

May is a great month for future Certified Internal Auditors! IIA members can save 20% on The IIA’s CIA Learning System, new CIA applications, and exam registration fees. Ready to start your exam prep? Order online by May 31 with code SAVE20.

Press Release | May 04, 2022

Get Answers to all your CIA Questions!

Join instructor Goli Trump for a free one-hour webinar on May 11 @ 1:00 pm ET. She’ll provide an introduction to the Part 1 CIA syllabus, share study tips, and walk through practice questions to demonstrate exam strategies. Register now! Space is limited.

Press Release | May 02, 2022

May is International Internal Audit Awareness Month

Reinforces How Internal Audit Protects the Public Interest Through The IIA’s International Standards and Good Governance

Communications | Apr 15, 2022

The IIA Launches a Crisis Resource Center

Internal audit plays a critical role in tackling current event risks and challenges. The IIA is providing timely resources to address current and future crises, like the pandemic and the new Russia-Ukraine conflict.

Communications | Apr 05, 2022

2022 Emerging Leaders Nominations Open

What defines an extraordinary internal auditor, and who represents the future of the profession?

Communications | Apr 01, 2022

IIA Bulletin: ISSB Issues Proposed Global Climate and Sustainability Disclosure Standards

IIA Bulletin on sustainability reporting

Communications | Mar 29, 2022

North American Membership Meeting Announcement

Communications | Mar 28, 2022

Pandemic and Need for Continuous Assurance Put Internal Audit at Forefront of Companies’ Defense

The Internal Audit Foundation and The Institute of Internal Auditors (IIA) announced today that they have issued a new research report in collaboration with Kroll.

Communications | Mar 22, 2022

IIA Issues Statement of Continued Support for Ukraine

The IIA strongly condemns Russia’s unlawful and unjustified invasion of the sovereign nation of Ukraine and the devastating humanitarian crisis that has ensued.

Communications | Mar 22, 2022

The Institute of Internal Auditors Applauds Release of Proposed Climate Disclosure Rule by U.S. SEC

The Institute of Internal Auditors (The IIA) applauds this week’s release by the U.S. Securities and Exchange Commission (SEC) of a proposed new rule that will require public companies to disclose climate-related information in their registration statements and periodic reports, including the 10-K.

Get a Group Membership

Learn More