Guide to Data Protection Auditing


			Data Protection Homepage Audit Guide Homepage Download print version


< Previous \| Next >
	The Role of an Auditor (print ref: Part 4, Section 1) Before defining the skills required by Auditors it is worth recalling what the role of the Auditor is when conducting a Data Protection Audit. The key roles identified from the earlier Parts of this Manual include: Checking the current compliance status Assessing the staff's awareness of their data protection obligations Assessing whether the rights of Data Subjects are adequately protected Identifying non-compliances Agreeing suitable corrective action to remove non-compliances. It is also worth bearing in mind the following aspects of the audit process while reflecting upon the role an Auditor is required to undertake. Any person who conducts an audit must do so with the full authority of the executive management. Otherwise, they may find that their authority is challenged by people who are senior to them. The internal audit process requires commitment. Ideally, Auditors should be supported by more experienced colleagues when first conducting audits. Auditors should be independent of the function being audited, and should be objective when undertaking audits. Return to top
< Previous \| Next >

The Role of an Auditor (print ref: Part 4, Section 1)