Internal control & compliance

In phase 4, we assume that your organisation has established parts of the internal control in the form of:

  • a description of how your business organises its effort regarding privacy and internal control (directives), including a description of your privacy strategy and data security routines 
  • a number of routines and policies that describe how you are becoming compliant with the GDPR (implementation documents)

Phase 4 focuses on the controlling part of internal control. This is where the organisation will make sure the internal control routines are complied with.

We help you compose internal control routines that assures compliance of all measures that are taken in within the organisation, focusing on GDPR requirements.

Get in touch.