Data Protection Homepage Audit Guide Homepage Download print version
Part 1: Introduction | Part 2: The Audit Method | Part 3: The Audit Process | Part 4: Guide to Auditing | Annexes
< Previous | Next >
Section
Title
Print Page ref
Part 4
Guide to Auditing
4.3
1.
The Role of an Auditor
2.
Auditing Tasks
2.1
Obtaining Evidence
4.5
2.1.1
Auditor Introduction
2.1.2
Opportunity for Member of Staff to Talk
2.1.3
Explanation of Purpose
2.1.4
Auditor Gathers Information
2.1.5
Information Correlation
2.1.6
Summary and Closing
4.6
2.2
Assessing the Evidence
2.2.1
Sources and Reliability
2.2.2
Weaknesses in Information
2.2.3
Strengthening the Evidence Base
4.7
2.2.4
Validity, Reliability and Repeatability
3.
Human Aspects
3.1
A Good Auditor
3.2
Good Practices/a>
4.8
3.3
Bad Practices
4.9
3.4
Establishing Relationships
4.10
4.
Audit Techniques
4.11
4.1
Basis of Questions
4.2
Good Questioning Techniques
4.2.1
Open Questions
4.2.2
Directed Questioning
4.2.3
Inviting a Negative Response
Questions to Avoid
4.13
4.3.1
Closed Questions
4.3.2
Limiting Questions
4.3.3
Hypothetical Questions
4.3.4
Leading Questions
4.3.5
Multiple Questions
4.4
Black Box Auditing
5.
Practical Considerations
4.14
5.1
Layout of Interview Room
5.2
Note Taking
5.3
What to Take to the Audit
5.4
Auditor’s Code of Conduct
4.15
5.4.1
Honesty
5.4.2
Conflict of Interest
5.4.3
Inducements
5.4.4
Confidentiality
5.4.5
Concealment
5.4.6
Professionalism
Figure
Interview Structure
Black Box Audit Model
4.12
Return to top
What is a Data Protection Audit? | Why Audit? | Beginner's Guide | Step-by-step Process | Forms and Checklists | Site Index Copyright