In order for our site to work, small files called ‘cookies’ have been placed on your device. These mandatory cookies do not process any personal data.
We would also like to use analytics cookies to understand how our site is used by visitors and then use this information to improve our site and the experience of using our site. The service we use is Google Analytics.
Please indicate whether or not you are happy to allow the use of these analytics cookies by selecting one of the options below. You can read more about our cookies before you choose and read our Privacy Notice to find out more information on how we use your personal data
To ensure required levels of data protection compliance, you need to understand exactly what processing of personal data you are undertaking. A first step in establishing such an understanding at organisational level will require a comprehensive review and documentation of data for which you are controller and therefore have legal responsibility.
The documentation of a data audit will also assist you when it comes to demonstrating a proactive approach to your statutory obligations as well as future reporting requirements to the Office of the Data Protection Authority (ODPA).
Below are suggested key steps that you may find helpful when conducting a data audit. You will need to tailor the questions and general approach based on your own particular circumstances.
Stage 2: Identify the personal data and how it is processed
You know your organisation better than anyone so ensure you include questions that are relevant and specific to your own processing.
Stage 3: Assess processing and compliance
Stage 4: Report, recommend and make changes