Data Protection Audit

Legally Trained Consultants

our data protection health checks are unique to each client

For organisations transitioning from start-ups to established entities, ensuring compliant data protection practices and procedures is crucial. Without dedicated data protection professionals, gaps and weaknesses in compliance are likely.

To address these issues, a comprehensive data protection audit or gap analysis is essential. This process will help you understand the effectiveness of your current practices, identify lawful and unlawful aspects, and outline necessary actions for compliance with GDPR and data protection principles.

At IGS, we specialise in conducting thorough and bespoke gap analyses and health checks for organisations of all sizes and industries. Our audits are tailored to your specific needs, ensuring a deep dive into your information security management system, data processing activities, and handling of sensitive personal data. We provide actionable insights in an informative, digestible format, helping you protect personal data, demonstrate compliance, and improve your data processing practices. Our independent assessment ensures that your data protection measures are both effective and compliant with GDPR rules, the Information Commissioner’s Office guidelines, and other legal obligation.

We ensure that all our health checks are unique to each client, so you don’t feel like you are getting a template or a copy-and-paste health check. Importantly, we ‘look under the hood’ for your organisation. We make sure we provide a deep dive into your organisation’s governance and practices to see what is going on, and not just take a view from what we see from the surface.

Features

We undertake health data protection health checks on:

  • A whole organisation
  • Particular programmes or projects
  • Specific departments or outputs within an organisation

When undertaking a health check, we undertake the following:

  • A review of your organisation structure to ensure that there are proper data protection roles and responsibilities in place
  • A review of the processes in which you collect, capture and process data, including any further processing your organisation takes
  • A review of your data protection/ information governance policy documentation
  • A review of your fair processing materials
  • A review of your record of processing activities and information asset registers
  • A review of your data storage processes
  • A review of your engagement with third party processors
  • A review of your internal organisational information governance practices
  • A review of your template forms, standard operating procedures (relevant to data protection)
  • Specific aspects of compliance you are concerned about

For each area, we will undertake a comprehensive review to capture any strengths and weaknesses within your organisation, providing recommendations and outputs against each area for you to consider and take action on (as necessary).

To find out more, to get in touch, or to get a quote, please get in contact with us on how we can assist you and how we can provide a data protection health check for you.

Legally Trained Consultants

What we will check for in our health checks

We are here to assist:

Our Services

We provide a full data protection and information governance consultancy service to all our clients who engage with us. We provide flexible packages and services to make sure that you only pay for what you need, so you aren’t paying for unnecessary services. Whatever you and your organisation need, we are here to help.

Data Protection Consultant

Data Protection Impact Assessment (DPIA)

External Independent Reviews

Data Protection Training

Data Protection Officer Services

Fair Processing Materials

Data Protection Audit

Information Governance Policy Development

Data Security and Protection Toolkit (DSPT)

Record of Processing Activities (ROPA) & Information Asset Registers (IAR)

Packaged Services

Other Services

Send Us A Message