CONDUCT AUDITS, ANALYSE RESULTS AND IMPLEMENT CHANGES TO ADDRESS GAPS

Course Overview

You will be able to conduct audits, analyse results and implement changes to address identified gaps. You will also be able to utilise checklist to provide evidence of data protection policies and processes are implemented and practiced on the ground.

Course Objectives

You will have knowledge of the following:

• Methodologies and tools for the conduct of audit activities
• Interpretation and analysis of audit results
• Identification of non-compliance
• Key obligations under the Data Protection Provision of the PDPA.
• DPTM Certification process and requirements, including resources (e.g. DPTM Information Kit, DPTM Checklist)

You will be able to perform the following:

• Conduct DP audit activities in line with the organisations compliance processes and guidelines, using appropriate methodologies and tools
• Analyse DP audit results and highlight identified process gaps or key instances of noncompliance
• Propose improvements to existing DP compliance processes and measures to address major risks
• Implement changes in performance of audits in alignment with changes in internal compliance standards or external regulatory guidelines
• Conduct internal audits to monitor and evaluate the implementation of DP policies and processes
• Map the organisations Data Protection Framework to the relevant certification requirements in terms of the principles and assessment criteria
• Identify the gaps to meet the certification requirements and processes that will be improved by the application of new/emerging standards of certification
• Document the change impact on policies and corresponding procedures with the adoption of standards and certification across the organisation
• Coordinate with internal and external stakeholders to project manage on-site verification of the organisations policies, processes and practices for data protection

Pre-requisites

1. Learner has attended and is competent for module titled Fundamentals of Personal Data Protection Act or its equivalent

2. Learners are assumed to be able to:

• Understand relevant organisational strategies, objectives, culture, policies, processes and products / services
• Have information gathering skills to gather and collate necessary data
• Have analytical skills to assess policies and procedures
• Have business writing skills to prepare management report
• Have interpersonal and communication skills to interact with relevant stakeholders
• Have facilitation skills to ask the right questions to elicit necessary information
• Be aware of compliance requirements of organisation

Hardware & Software

This course will be conducted as a Virtual Live Class (VLC) via Zoom platform. Participants must own a zoom account and have a laptop or a desktop with “Zoom Client for Meetings” installed. This can be downloaded from https://zoom.us/download

System Requirement

Must Have: Please ensure that your computer or laptop meets the following requirements. Operating system: Windows 10 or MacOS (64 bit or above) Processor/CPU: 1.8 GHz, 2-core Intel Core i3 or higher Minimum 20 GB hard disk space. Minimum 8 Gb RAM Webcam (The camera must be turned on for the duration of the class) Microphone Internet Connection: Wired or Wireless broadband Latest version of Zoom software to be installed on computer or laptop prior to the class. Good to Have: Wired internet connection Wired internet will provide you with stable and reliable connection. Dual monitors Using a dual monitor setup will undoubtedly improve your training experience, enabling you to simultaneously participate in hands-on exercises and maintain engagement with your instructor. Not Recommended: Using tablets is not recommended due to their smaller screen size, which could cause eye strain and discomfort over the course of the program's duration.

Course Outline

Role of audit in legal compliance lifecycle

Key obligations under the data protection obligations

• Identification of non-compliance
• Evidence of risk and non-compliance

Methodology and tools for conduct of audit activities

1)  Pre audit activities

• Appointing audit team leader
• Determine audit objectives and scope
• Arranging audit team
• Contact with auditee

2)  Review of documents

• Review relevant audit documents to determine adequacy with respect to audit criteria

3)  Preparing for the onsite audit activities

• Establishing the audit plan
• Assigning audit areas to audit team
• Preparing work document

4)  Conducting on-site audit activities

• Opening meeting
• Interaction and communication during audit
• Collecting and verifying audit evidence
• Documenting audit finding
• Initial review for audit conclusions
• Closing meeting

5)  Preparing audit report

• Preparing report
• Distributing audit report

Interpretation and analysis of audit results

Data Protection Trust Mark Certification

• Processes and requirements

Reference:

• Guide to Developing a Data Protection Management Programme
• PDPA Assessment Tool for Organisations
• DPTM Information Kit
• DPTM Checklist

Additional Details

Price

Course Fee
		Individual Sponsored Trainee		Company Sponsored Trainee
		before GST	with GST	before GST	with GST
Full Course Fee		$1,400.00	$1,526.00	$1,400.00	$1,526.00

 

Remarks

Union Training Assistance Programme (UTAP)
NTUC members enjoy UTAP* benefit of up to $250 each year when you sign up for courses with NTUC LearningHub

* UTAP supports 50% of the course fees paid cap at $250 per year. You must be a union member throughout the course duration and at the time of claim. You must achieve a minimum of 75% attendance for each application and have sat for all prescribed examinations. Other terms and conditions apply.

Terms & Conditions apply. NTUC LearningHub reserve the right to make changes or improvements to any of the products described in this document without prior notice.

Prices are subject to other LHUB miscellaneous fees.