Data protection audit by an authority | GDPR audit