Overview of a Security Audit Form

What is a Security Audit Form?

The Security Audit Form is a non-legal tool, intended as an aid for documenting the technical and organisational measures in your business to ensure security of personal data. A comprehensive security audit is a fundamental step towards GDPR compliance, as well as general good practice in data privacy protection.
This Security Audit Form comprises 10 sections. It’s possible that not all sections or questions are applicable to your business. Take this as a starting point and revisit this form periodically.
Security audit often touches upon highly confidential information in your business. This audit should be taken by a senior officer in your business who is familiar with the technical and administrative procedures and measures adopted in the business.
In-depth knowledge of the GDPR is not required to fill in this audit form, but honest answers are necessary for the integrity of record-keeping. If you are not sure of the answer, don’t know, or need to check, fill in the fields accordingly. 
In some sections, our helptext provides you with examples to give you a sense of direction in answering those questions. These examples are by no means the “right answer”. It is crucial that you answer each question with factual, accurate and specific information that applies in your situation.
Important Note: The GDPR is a complex principle-based law subject to further interpretation by the supervisory authorities of each EU country. If you are not sure whether your data handling practices are compliant with the GDPR, please seek professional legal advice.

Ready to get started?

Create a free account now and explore all of the Zegal features.

Get Started

No credit card required