Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Audit Function.

PublishMax Sommer Modified over 6 years ago

Similar presentations

Presentation on theme: "The Audit Function."— Presentation transcript:

1 The Audit Function

2 Why Do We Need To Audit GDPRiS?
What are the tasks of the DPO? To inform and advise the organisation and its employees about their obligations to comply with the GDPR and other data protection laws. To monitor compliance with the GDPR and other data protection laws, including managing internal data protection activities, advise on data protection impact assessments; train staff and conduct internal audits. To be the first point of contact for supervisory authorities and for individuals whose data is processed (employees, customers etc).

3 What Does An Audit Involve?
This is an opportunity to “stop the clock” For the school manager to periodically check data protection activities and to facilitate understanding For the DPO to check that all aspects of compliance requirements have been met To identify any gaps and enable schools to address those needs

4 SCHEDULE AUDIT REQUIREMENTS- The school manager and DPO can set audit reminder dates

5 SEE PROGRESS- The school manager and DPO can see the progress of audits

6 WHAT CAN BE AUDITED? The supplier (Data processor) mapping

7 WHAT CAN BE AUDITED? The supplier (Data processor) data sharing agreements and security questions

8 WHAT CAN BE AUDITED? Departmental Questionnaires
Including: Leadership School-Wide Support Reviews and Improvements

9 WHAT CAN BE AUDITED? Privacy Impact Assessment Questionnaires

10 WHAT CAN BE AUDITED? Staff Self Assessment Questionnaires (SAQ’S)

11 Identify Any System Gaps-
The School Manager and DPO will ensure that all responses reflect GDPR compliance. The reports will also help school managers and DPOs identify any gaps in their compliance journey (if non compliant responses are made). Highlighting the gaps that exist and needs to be filled- enables the school to focus on work and resources required to achieve and maintain compliance.

12 REPORTS – will be available
List of staff SAQ replies Suppliers/Services Data mapping query Internal Review Suppliers documentation/ uploads Breaches List of training documents

13

Download ppt "The Audit Function."

Similar presentations

Quality Management.

Quality Management.
Every Solution Consultancy ISO 9001:2008 Certification IMPLEMENTATION Web:

Every Solution Consultancy ISO 9001:2008 Certification IMPLEMENTATION Web:
Training on Data Protection Roles of the Data Protection Office.

Training on Data Protection Roles of the Data Protection Office.
Property of Common Sense Privacy - all rights reserved 01875340890 THE DATA PROTECTION ACT 1998 A QUESTION OF PRINCIPLES Sheelagh F M.

Property of Common Sense Privacy - all rights reserved THE DATA PROTECTION ACT 1998 A QUESTION OF PRINCIPLES Sheelagh F M.
Presenting The Broker-Dealer Certification Tool The Compliance Department Inc. Broker Dealer Compliance Consultants Compliance SCORE Powered by Keane BRMS.

Presenting The Broker-Dealer Certification Tool The Compliance Department Inc. Broker Dealer Compliance Consultants Compliance SCORE Powered by Keane BRMS.
1 Internal Controls. 2 Example Internal Control Manual  Focused Assessment Exhibit 4A  /trade/trade_programs/audits/focused.

1 Internal Controls. 2 Example Internal Control Manual  Focused Assessment Exhibit 4A  /trade/trade_programs/audits/focused.
Information Security IBK3IBV01 College 3 Paul J. Cornelisse.

Information Security IBK3IBV01 College 3 Paul J. Cornelisse.
Can you conduct DSE risk assessments for under £10 each? ADVISA can! ADVISA makes DSE risk assessments quick & affordable, at a fraction of the cost of.

Can you conduct DSE risk assessments for under £10 each? ADVISA can! ADVISA makes DSE risk assessments quick & affordable, at a fraction of the cost of.
Organizing a Privacy Program: Administrative Infrastructure and Reporting Relationships Presented by: Samuel P. Jenkins, Director Defense Privacy Office.

Organizing a Privacy Program: Administrative Infrastructure and Reporting Relationships Presented by: Samuel P. Jenkins, Director Defense Privacy Office.
Information Sharing & Corporate Governance Dave Parsons, Information Governance Manager, City of Cardiff Council.

Information Sharing & Corporate Governance Dave Parsons, Information Governance Manager, City of Cardiff Council.
The EU General Data Protection Regulation Frank Rankin.

The EU General Data Protection Regulation Frank Rankin.
Eyes Wide Open A little about us…..

Eyes Wide Open A little about us…..
Data Protection Officer’s Overview of the GDPR

Data Protection Officer’s Overview of the GDPR
Accountability & Structured Privacy Management

Accountability & Structured Privacy Management
By: Ms Peterlia Ramutsheli

By: Ms Peterlia Ramutsheli
GS-R-3 vs. ISO 9001:2008 Requirements - 4

GS-R-3 vs. ISO 9001:2008 Requirements - 4
ISO 14001: 2004 Environmental Management Review Presentation

ISO 14001: 2004 Environmental Management Review Presentation
BSBWOR301 Organise personal work priorities and development

BSBWOR301 Organise personal work priorities and development
Data protection headaches: GDPR, brexit AND perimeter risk

Data protection headaches: GDPR, brexit AND perimeter risk
Deployment of a DPO Niamh Gavin AIB Data Protection Legal

Deployment of a DPO Niamh Gavin AIB Data Protection Legal

Similar presentations

Ads by Google