The Data Protection Officer (DPO) is responsible for enforcing and promoting compliance with the General Data Protection Regulation xxxx (GDPR). Section xxxx of the GDPR contains a provision giving the DPO power to assess any organisation’s processing of personal data for the following of ‘good practice’, with the agreement of the data controller. This is done through a consensual audit.
The Data Protection Officer (DPO) sees auditing as a constructive process with real benefits for data controllers and so aims to establish a participative approach.
Organisation Name has agreed to a consensual audit its processing of personal data. An introductory meeting was held on xxxx with representatives of the organisation to identify and discuss the scope of the audit.