Data Protection Audit
The idea of a Data Protection Audit is to make sure that an organization is in compliance with the applicable privacy regulation and the data protection policies and procedures work as planned. In contrast to a self-assessment, an audit is done by an external entity.
Depending on the structure and size of an organization or business and the type of personal data processed, regular audits may be a necessary part of the technical and organizational measures necessary to ensure data privacy compliance according to Art. 32 Sec. 1 lit d GDPR.