A detailed assessment of your information management and compliance, often before a further audit from the ICO
An information audit is a necessary step towards understanding your information landscape and preparing for upcoming audits from the Information Commissioners Office (ICO)
As part of our information audit service we will help you compile an Information Asset Register for all the information records in your organisation. We will assist with defining retention periods for records and isolate the locations where personal, confidential records are held. We will also help you to quantify your paper based information and the electronic files and systems that you use to function on a daily basis.
The first step in the process is to define the audit’s scope and objectives including which parts of your organisation are to be assessed and the types of information assets that we will assess.
After this we help you define your departmental information leads and train them to go out into their departments and assess the information assets in general use and in archive. To do this we use questionnaires to gather information on the various information assets and then collate them together into the information asset register.
At the same time we will be carrying out an information or records management review that will show areas of weakness in your information or records management processes (if any) and recommendations for improvement over the short, medium and long term.
At the end of the process you will know where you stand and have a workable plan to improve information compliance and security going forward.