I need to respond to regulatory audits. A review of our privacy management programme, including the personal data we collect, and to document data flows to ensure we are compliant, is necessary. I need to assess our vendor qualification and data-sharing processes. I need to be prepared for an audit.
See our Data Mapping and Records of Processing and Business Process Compliance services.
Information audits and data mapping, records of processing activities.
Privacy statements, data subject access requests, responding to complaints.
Vendor due diligence, data processing agreements, data transfers and transfer impact assessments.
Privacy impact assessments, privacy by design, consent and other legal basis for processing requirements and retention periods.
