From May 25 2018 the General Data Protection Regulation (GDPR) applies throughout the EU. Failure to comply with the requirements of the GDPR can lead to high fines. From the Expert Centre Data Security Kiwa supports organisations with assessments, audits and certifications.
At a GDPR audit an auditor from Kiwa checks your policy on information security and privacy against the requirements set in the GDPR. We check whether your organisation complies with the requirements of the European privacy legislation and whether you have structured your policies and processes in a way future compliance is assured.
Kiwa will, among other things, review processes and policies relating to data protection. This way it is checked whether you have carried out a data protection impact assessment (DPIA) and what the resulting measures (and their effectiveness) are. Attention is also paid to the efficiency of information processing, the responsibilities of relevant officers within the organisation (including the data protection officer, DPO) and the technical and physical security measures taken.