skip to main content
Connect
Call me back
Visit us
0191 211 7777
shutterstock 2153884561 2

Data Protection Audit for Businesses

Audits tailored to your business to ensure you’re always on top of your data compliance.

Data Protection Audit for Businesses

We conduct data audits to improve your organisation’s data protection compliance with current UK data protection guidance and best practice. 

How does it work?

We will assess your organisation’s data protection framework and identify any areas of non-compliance or improvement, before moving on to any additional ‘best practice’ work.

As a starting point, we would review or create a map or Record of Processing Activities (“ROPA”) which maps and records an organisation’s processing of personal data.

To do this, we either conduct interviews with various staff members in an organisation who handle personal data on a regular basis or support you to undertake that process yourself.

The results of the interviews are then used to collate the information into one spreadsheet. After this, we identify what mandatory documentation needs updating and/or implementing before proceeding with any additional work which is considered good practice.

However, each audit is bespoke to each business, ensuring you get exactly the right support you need.

 

What does the data audit include?

Policies
  • Website and customer privacy notice (including cookies).
  • Employee privacy notice.
  • Data protection policy.
  • CCTV policy (if CCTV used on premises).
  • Personal data breach policy/procedure.
  • Data retention and deletion policy.
  • IT and communications systems/BYOD policy.
  • Subject access request policy/step-by-step guide.
Records and logs
  • Record of processing activities (over 250 staff and/or if you collect any special category data).
  • Record of personal data breaches.
  • Record of subject access requests.
  • Record of CCTV disclosures.
  • Record of DPIAs.
  • Record of LIAs.
  • Record of consents.
Additional data protection framework areas
  • Legitimate interest assessment.
  • Data protection impact assessment.
  • Review data sharing/processing agreements.
  • Website health check.
  • Data protection training.

Key Contact

alex craig
Alex Craig
Partner and Head of the Commercial team
0191 211 7911
Legal Commentary

Also in Data Protection & Information Law

Our specialist team can help you succeed
We're based in Newcastle upon Tyne, but our people live across the North East and Cumbria, helping clients nationwide. Get in touch today and see how we make a difference.
Call us Contact us
Contact us
Related Services
With Muckle you get experience and expertise in a wide range of services
Commercial Law
Quality in-depth commercial legal advice that supports the day-to-day running of your business. From intellectual property law and tech to data protection and procurement - we've got you covered.
Alex Craig
Key Contact
Alex Craig
Partner and Head of the Commercial team
Data Protection & Information Law
Opt in for peace for mind. We advise private and public sector clients on all types of data protection issues.
Alex Craig
Key Contact
Alex Craig
Partner and Head of the Commercial team

Contact the legal specialists

Let's get started - get in touch today and we'll put you on the right track.
0191 211 7777 Email us Call me back Contact us