As a Data Controller, your responsibilities under GDPR over employee and customer personal data will also extend to the third-party processors you engage. An important demonstration of this due diligence, whilst providing assurance and mitigating your risk of a breach, is to undertake an independent audit of your suppliers’ compliance.
In line with ICO or CNIL audit guidelines, we are able draw on our longstanding technical, operational and legal expertise in conducting a third party data privacy audit to report on the level of compliance of your vendors and highlight any exposure your company may not be aware it has.
Our audit solution will focus on the preparedness of your supply chain, specifically involving your data processes and the activity in scope. Designed to show if there are any weaknesses in the GDPR compliance standards and policies of your suppliers, we will also produce a set of recommended compensating controls to address any gaps.
Our comprehensive solution offers: