Difference between revisions of "Audits"
(→Privileges) |
|||
| Line 67: | Line 67: | ||
* update fields when possible. | * update fields when possible. | ||
|- | |- | ||
| − | |<u>Supervisory | + | |<u>Auditors Supervisory Team</u> || Members of the ''group'' assigned to this role have view (read) privileges. |
|- | |- | ||
|} | |} | ||
Latest revision as of 15:24, 28 September 2018
Contents
Introduction to Audits
Audits provide a control mechanism over personal data management system and activities.
The process enables to record audits information and to support their fulfilment.
Workflow
A new audit can be created using the Add New functionality and choosing "New Audit".
A workflow enables to move audits" in several statuses as shown in the following picture.
The following table explains the meaning of each status:
| Status | Description |
|---|---|
| Default | A temporary status when the audit is initially created before the first save. |
| Opened | An audit in this status is draft and it is not actioned yet. |
| Planned | An audit in this status is planned for execution. |
| In progress | In this status, the audit is in progress. |
| Completed | In this status, all activities related to the audit were completed and closure is expected after confirmation. |
| Closed | In this status, all activities related to the audit are completed and confirmed. This is an end of life status, meaning no further status transitions are allowed. |
| Cancelled | Audit cancelled. This is an end of life status. |
Information
Audit records are organized in four sections:
- Identification, where identification data of the audit are recorded,
- Ownership & Organization, containing the assignment of the key roles enabled to manage the audit;
- Details, with the details of the audit to accomplish;
- Results, with the conclusions of the audit.
Detailed information on the meaning and use of every field can be found by pointing the mouse on the (i) next to each field. This will activate a tooltip with a brief description of the field.
Additional information can be found in the secondary forms of the record: attachments, related items, messages and history. See How To for more information.
Privileges
Audit can be created by the users to whom the corresponding privilege is granted (see Users & Groups for more information on how to set this privilege).
The lifecycle of the audit is managed by the roles described in the table below. Groups are pre assigned to the roles according to the settings (see Settings for more information on how to set these defaults). Initial assignments can be modified according to privileges choosing among the enabled groups (see once again Settings for more information on how to enable groups).
| Role | Description |
|---|---|
| DPO Group | Members of the group assigned to this role have full privileges. They can:
|
| Data Controller Group | Members of the group assigned to this role have view (read) privileges. |
| Data Processor Group | Members of the group assigned to this role have view (read) privileges. |
| Working Team | Members of this group have several privileges. They can manage the entire lifecycle, being enabled to:
|
| Auditors Supervisory Team | Members of the group assigned to this role have view (read) privileges. |
Reports
The list of audits can be filtered and exported to excel format from the view audits.
Related processes
Audits can be related to risks and issues / non conformities.
