 |
Aims of Data Protection Compliance Audits (print ref: Part 1, Section 1)
Many organisations will be familiar with existing audit methodologies used to assess compliance in areas such as Finance, Data Security, Health and Safety, Environment and Quality Assurance. The aims of Data Protection Compliance Audits go beyond the basic requirements of say Data Security and address wider aspects of data protection including:
- Mechanisms for ensuring that information is obtained and processed fairly, lawfully and on a proper basis.
- Quality Assurance - ensuring that information is accurate, complete and up-to-date, adequate, relevant and not excessive.
- Retention - appropriate weeding and deletion of information.
- Documentation on authorised use of systems, e.g. codes of practice, guidelines etc.
- Compliance with individual's rights, such as subject access.
Compliance with the data protection legislation in the context of other pieces of legislation such as the Human Rights Act.
|
 |