Data Mapping | Compliance Audit

Why do a data protection audit?

There are many reasons for undergoing an audit: you might be preparing your organisation for sale or investment; you may be new to data protection laws and wish to better understand what your organisation needs to do to meet compliance; or you may wish to re-assess/refresh your existing practices. We generally recommend that face-to-face audits are most beneficial for clients; however, we can undergo an audit in any way that suits your organisation best.

Data auditing methods

We generally recommend that face-to-face audits are most beneficial for clients; however, we can undergo an audit in any way that suits your organisation best. Should you prefer to carry out the audit independently, we can provide you with tailored tools to do this, and we will be on hand to assist with any specific or ad-hoc queries that you may have.

Interview audit

An interview audit involves us interviewing key personnel from the various business functions of your organisation to fully explore the flow of data in the organisation. We also attend your premises to audit the physical security (and test your visitor procedures). As part of this process, we then review the interview responses, physical security findings and all relevant documents.

Reporting and remediation

Following a desktop or interview audit, we will prepare an audit report with our findings. This report includes an action plan for any remediation recommendations, which is presented as a colour-coded traffic light system to assist your organisation to prioritise its road to compliance. We can assist to remedy any compliance gaps identified.

How can we support you?

We regularly assist clients of varying sizes and group structures with audits and data mapping exercises. We have assisted clients with multi-jurisdictional audits, and can act as lead counsel when input is required from local solicitors, for example to account for the derogations among EU member states.

Please get in touch with our team to discuss how we can support your business.

Data Breaches

Assisting you in understanding whether your business has suffered a data breach and, where appropriate, advising on the next steps.
Data Breaches
Policies & Documents

We have a number of template policies and types of documentation to help your business comply with data protection law.
Policies & Documents
Big Data & Technology

Our team advises on the deployment of big data technologies in compliance with data protection law.
Big Data & Technology
International Reach

Helping you to ensure your data processing activities are fully compliant with GDPR and the UK Data Protection Act worldwide.
International Reach of Data Protection Law
Cyber Security

Our team can advise you on full compliance with the requirements to ensure your business is not at risk of cyber crime.
Cyber Security & Cyber Crime

In 2016, we became one of the first law firms in Scotland to become Living Wage accredited employers.
Winners of Corporate & Commercial Team of the Year and Family Law Team of the Year at the Scottish Legal Awards 2020.
Our Real Estate team won the Property Team of the Year Award at the British Legal Awards in 2018.
Winner of SME of the Year at the Scottish SME Awards 2017, hosted by Scottish Business Insider.
Highly Commended for Commercial Team of the Year at the British Legal Awards 2016.
We are a proud member of the Legal Sustainability Alliance, a network of law firms committed to working collaboratively to reduce our environmental impact
In 2019, MacRoberts achieved Cyber Essentials Plus certification, a UK Government entry-level information security standard.
MacRoberts holds the ISO 9001:2015 certification for Quality Management, the most widely recognised quality management system standard in the world.
MacRoberts holds the ISO14001:2015 certification for Environmental Management, demonstrating our ongoing commitment to environmental awareness.
MacRoberts holds the ISO27001:2013 certification for Information Security, an internationally recognised security gold standard.
Business continuity is a critical element of the Business Management System at MacRoberts and we hold full accreditation with the ISO 22301:2012.
MacRoberts is a member of IP Inclusive, a network of intellectual property professionals working to make our community more equal, diverse and inclusive.
We are active members of the PRIME Programme – an organisation that focuses on ensuring a career in law is open to talent from all economic and social backgrounds.
MacRoberts supports the Scottish Business Pledge, a values-led partnership between Government and business that is based on boosting productivity and competitiveness through fairness, equality and sustainable employment.
We are supporters of the Partnership for Change, a network of organisations and individuals who share a common ambition to improve diversity on boards and in senior leadership.
MacRoberts is a Disability Confident employer, and are committed to disability equality across our firm.
MacRoberts fully supports flexible working practices and supports family-friendly working practices.
MacRoberts became a member of the Stonewall Diversity Champions Programme in 2018.
MacRoberts is a member of The Glass Network, Scotland's organisation for LGBT+ allied legal professionals.
MacRoberts is a longstanding member of Scotland Food & Drink, the leading trade association for Scotland's food and drink industry.