Auditing GDPR maturity and compliance

Training In person 31/03/2025 7 CPE-points
Auditing GDPR maturity and compliance
Early bird

28/02/2025

€800,00 (€968,00 incl. VAT)

€600,00 (€726,00 incl. VAT)
Registration

25/03/2025

€900,00 (€1.089,00 incl. VAT)

€700,00 (€847,00 incl. VAT)
Useful information

31 March 2025 - 09:00

31 March 2025 - 17:00

IIA Belgium

English

Intermediate

7 CPE-points

Overview

This training class helps you to understand, and be able to develop a risk-based audit approach to assess compliance with the GDPR and data protection procedures. The GDPR introduced additional responsibilities for organisations processing personal data and assigned more rights to the individuals whose personal data is processed. This requires the implementation of additional processes and robust procedures and is not at all limited to IT security.

Basic GDPR principles will be discussed and clarified through the use of practical cases so that participants understand the essential control objectives and required controls. The training will also cover several Data Protection maturity assessment models that can assist with a broad and efficient screening of the overall maturity and to quickly identify blind spots and poor controls.

Participants will be coached on the development of compliance audit programs for specific high-risk GDPR provisions such as data subject rights, 3rd party processors of personal data, handling of data breaches and records of processing activities. This will happen through a series of exercises, feedback sessions and class discussions.

Target Audience

Internal auditors, audit managers and directors with a keen interest to gain an in-depth understanding of the GDPR implications on an organisation’s data protection procedures and how Internal Audit can provide independent assurance over the key risks relating to the GDPR.

Course Objectives

• Obtain profound knowledge on data protection key risk areas and processes in order to understand key areas to focus on during audits.
• Learn how to use good practice checklists to help you secure your organization, protect your customers’ data, and avoid costly fines for non-compliance.
• Receive guidance on audit tools and techniques which will enhance the efficiency and effectiveness of auditing GDPR compliance.

Course Content


• Accountability and governance around the DPO function, privacy policies and training
• Processing principles such as data minimization, legitimate purposes, lawful processing, appropriate technical or organizational measures to ensure security of personal data.
• Audit tools and techniques to evaluate the design and good functioning of processes and controls around the key GDPR

Koen Albers
Koen Albers

Audit and Governance Expert

Directed and managed audit/risk departments in various environments and industries; gained expertise in the domains of governance, (fraud) risk management, data protection, compliance management and internal audit. - Working experience in industries such as banking/insurance, ICT services, health services, utilities and transport in both private (international) and public sector organisations. - Past president and current vice-president of the Belgian chapter of the Association of Certified Fraud Examiners (ACFE), member of several audit committees and regular speaker/instructor at (inter)national audit/fraud conferences.

IIA Belgium uses cookies so that you can automatically log in to our website. We use Google's cookies to analyze activities on our website. Thanks to this we can also see how our website is used and which features you find interesting. If desired, you can change your preferences under "Cookie preferences".

Read more about cookies in our cookie policy or take a look at our privacy policy to see how we handle your personal data.

Cookie preferences