Are you looking for a legal compliance audit? The purpose of a gap analysis is to compare your organisation to an identified regulatory requirement and determine the degree to which your organisation complies. A compliance audit involves the verification of compliance by your organisation with a regulatory requirement (like a law, rules, code or standard) by gathering evidence. An audit is usually conducted after implementation has been done and often results in the auditor certifying compliance or certification by someone. It looks backwards and is about verification and assurance.

We have years of experience doing various compliance audits on specific focus areas. We can also do an assessment or gap analysis, but those are something different.

The flavours of compliance audits we offer

We have grouped the issues under main categories:

  • Data protection audit (to check you comply with one or more data protection laws, codes or standards)
  • Protection of Personal Information Audit (to check whether you comply specifically with POPIA)
  • Intellectual Property (to identify, protect and enables exploitation of your valuable IP)
  • Electronic Process (to ensure that an automatic or electronic process is lawful and binding)
  • Plain Language Document (we check your existing documents and where necessary convert existing documents into plain language without losing legal effect or weakening your rights)
  • Social Media (will establish the current state of affairs regards social media and your organisation)
  • Website (we ascertain the extent to which the organisation’s website complies with applicable law)
  • Monitoring (to check that you are monitoring communications lawfully)
  • Electronic Communications and Transactions (to ensure the legality of transactions that you conclude electronically (including contracting by email and SMS), the legal issues around electronic VAT invoices and email)
  • Information Sensitivity (to identify what “sensitive” information you possess, what laws apply to such information and how to restrict access to and handle it)
  • Document Imaging (to check the organisation’s document imaging practices)
  • Access to Information (to check compliance with access to information or freedom of information laws)
  • IT Goods or Services (the acquisition, management and disposal of IT goods and services)
  • Information Security (to check your compliance with information security law)

We sometimes do a combination of the audits and that is usually called an IT Legal Compliance Audit (we audit your compliance with IT law generally).

An audit is similar to a gap analysis

They are different but have similar components. The scope, process and deliverables are often similar. For more information about how we can help you with: