Leading data protection professionals

Data Protection Audit

Build trust in your organisation by setting high standards when you process personal data.

Hope & May’s Data Protection Audit service exists to ensure that you, and your business, can demonstrate to customers, staff, trustees and/or volunteers, that their data is being handled with care.

Our Data Protection Audit will review your policies, processes, and procedures to ensure you always get it right. Whether you need a gap analysis or a full audit to review your compliance, this service is designed for you.

Data processing for an ever-changing world

The world is ever-changing, and so are the laws and regulations governing the use of personal data. These changes can leave organisations unsure of the lawful basis for processing personal data, and could raise many questions, such as:

‘Do I need a data processing agreement?’, ‘Do I need a data sharing agreement?’, or, ‘Do I need a Data Protection Officer?’.

That’s why we are here to help.

Hope & May’s Data Audit is designed to help alleviate any concerns and ensure you maintain confidence and trust with your stakeholders by upholding the highest standards of data protection.

Our full comprehensive Data Protection Audit service is carried out over 4-6 days (dependent on your needs), and will include the following:

Discovery meeting with your data protection lead and any additional relevant staff members to fully understand the way data is gathered, processed, stored and deleted over time.

We review all the existing policies and procedures relevant to data protection to see how they align to the way data is processed – and we may include additional policies if required. We may review documents including

  • Privacy Notice
  • Data Protection Policy
  • Record of Processing Activities
  • Appropriate Policy Document
  • Legitimate Interest Assessment
  • Subject Access Request Policy
  • Data Breach Policy
  • Templates of DSA, DPA
  • Consent Forms
  • Cookies Policy
  • Safeguarding Policy
  • Media and Communication Policy
  • Volunteer and Employment Contract
  • CCTV Policy
  • Fundraising Practices
  • Referral Forms

Follow up meetings with relevant staff to finalise the audit.

Staff training may be included depending on your needs and budget.


To find out more about our Data Protection Audit services, please contact us today.

Get in touch today