Validation & Audit

The need

There is no such thing as being 'GDPR certified' nor are there any recognised seals which confirm any status like 'GDPR compliant'. Schemes, seals and certifications may become available in the future but, for now, it can be a bit of a minefield when assessing whether those businesses with whom you share data offer "sufficient guarantees to implement appropriate technical and organisational measures in such a manner that processing will meet the requirements of this Regulation and ensure the protection of the rights of the data subject."

We offer a way to obtain independent, third party validation of the extent to which your business or its suppliers and data processors meet their obligations under privacy legislation including GDPR.

Fidabona Privacy Validation

Our Privacy Validation exercise can look at your business as a whole or focus on specific areas.

It is based upon industry best practice, ICO and European Data Protection Board guidelines and reviews key compliance areas including internal policies, DPIA processes, personal data breach response, Data Subject rights processes and DPO functions.

The exercise is conducted using a combination of on site workshops and automated tools which help streamline the process and allow you to easily attach and share necessary evidence with the Fidabona team for review.

Our privacy professionals will review and analyse all the supporting documentation you have provided and prepare an in-depth findings report which you can use to help demonstrate the measures your organisation has taken to comply with privacy legislation to your customers, business partners and company leadership.

Supplier Audits

In the same way our validation exercise can help provide comfort to your business partners, our supplier audit service can review the extent to which your suppliers or other organisations you share personal data with have taken steps to meet their privacy obligations.

Audits can be either as part of a response to issues or concerns you have identified or as a part of your wider supply chain management.
Image