Skip navigation Spacer Spacer Spacer
Data Protection Logo Spacer Guide to Data Protection Auditing

Data Protection Homepage  Bullet  
Audit Guide Homepage  Bullet  
Download print version  Bullet  

What is a Data Protection Audit? Why Audit? Beginner's guide Step-by-step Process Forms and Checklists Site Map

SpacerWhat does an Audit cover? | Types of Audit | Background to the Audit method

Spacer Spacer

< Previous | Next >
 

Spacer
Spacer

Audit Categories (print ref: Part 2, section 1)

Section 5 of Part 1 has already discussed the concepts of First, Second and Third Party Audits. The best way to understand the differences between them is by reference to Figure 2.1 below:

Fig 2.1: The Three Audit Categories

Fig. 2.1: The Three Audit Categories

It can be seen from Figure 2.1 that ideally, External and Supplier Audits (i.e. Third and Second Party) are conducted in two parts, namely an Adequacy Audit followed by a Compliance Audit. Internal Audits (i.e. First Party) are conducted as a single Compliance Audit. It is important to realise that Adequacy and Compliance Audits fulfil different purposes in this methodology.

Return to top
 

Toolbox top border
Spacer

Background to the Audit method

Spacer
Spacer
Toolbox bottom border


< Previous | Next >

Spacer
Spacer