Skip to Content

Auditing the Data Privacy Policy

Format: Online

The objective of a data privacy policy internal audit is to assess an organization’s privacy protection posture against any regulatory requirements — or international best practices — and to review compliance with the organization’s own privacy-related policies.

The scope involves evaluating procedures undertaken by the organization throughout the typical information life-cycle phases: how information is created or received, distributed, used, maintained, and eventually disposed of.  As information and data have transformed by exponential expansion, the data privacy policy audit presents the status of risk associated with potential data misuse and recommends initiatives that can limit an organization’s liability or reputational risk.

Available Formats