Templates
Information Security
GDPR Compliance Audit Checklist
🔍

GDPR Compliance Audit Checklist

1
Identify the Data Protection Officer
2
Assess current data protection policies and procedures
3
Evaluate the organization's data processing activities
4
Map the locations and flow of personal data within the organization
5
Identify risks associated with the personal data stored and processed
6
Evaluate the subject's rights procedure
7
Assess the consent gathering processes
8
Evaluate data breach reporting and response procedures
9
Assess vendor compliance status
10
Train staff on GDPR principles
11
Evaluate data protection impact assessments
12
Check adequacy of data anonymization and pseudonymization techniques
13
Assess data retention and deletion procedures
14
Evaluate the physical and technical measures in place to protect data
15
Assess the procedures to handle a data breach
16
Ensure data transfer outside EU is in compliance with GDPR
17
Check if privacy design and default principles have been implemented
18
Review data protection policies, breach notification, and subject's rights processes
19
Approval: Data Protection Officer