Back
DPIA& Audit Services

Carrying-out personal data protection impact assessments prior to certain types of processing activities and conducting ex post annual audits on data processing activities are the legal requirements under PIPL, which are also the key actions to identify risks of processing.

Our DPIA & Audit Services are on hand to assist you to carry out an objective data protection impact assessment or an annual audit where processing is likely to result in a high risk to the rights and freedom of natural persons and also provide advice on related certification completion or reviewing.

l  Carrying out DPIA or an annual audit; 

We carry out all aspects of processing data privacy surveys and tests for you to review existing or planning processes and procedures of processing and analyse risks on an objective basis.With significant experience of risk identification and evaluation as well as supports from associated 3rd-party technical team, we always stand at the forefront of legal developments in China and beyond, and advise you on how to mitigate risk according to the outcome of the assessment or the audit under PIPL or other privacy laws.

l  Compliance demonstration; 

Our expertise also includes advising on  how to demonstrate the processing activities’ compliance with PIPL and other privacy laws, which involves advice about maintaining records of processing and analysing effectiveness of the measures implemented by our clients under their responsibilities, aiming to help our clients to establish their responsibilities and duties.

l  Certification completion or reviewing consultation; 

Seeking related certification is a great way of demonstration to customers, stakeholders and authorities that effective systems are in place of compliance with related privacy legislation. After learning more about your data processing activities via assessments or audits, we are also available for certification completion or reviewing consultation related to privacy protection , such as ISO/IEC 27701:2019.

Back
DPIA& Audit Services

Carrying-out personal data protection impact assessments prior to certain types of processing activities and conducting ex post annual audits on data processing activities are the legal requirements under PIPL, which are also the key actions to identify risks of processing.

Our DPIA & Audit Services are on hand to assist you to carry out an objective data protection impact assessment or an annual audit where processing is likely to result in a high risk to the rights and freedom of natural persons and also provide advice on related certification completion or reviewing.

l  Carrying out DPIA or an annual audit; 

We carry out all aspects of processing data privacy surveys and tests for you to review existing or planning processes and procedures of processing and analyse risks on an objective basis.With significant experience of risk identification and evaluation as well as supports from associated 3rd-party technical team, we always stand at the forefront of legal developments in China and beyond, and advise you on how to mitigate risk according to the outcome of the assessment or the audit under PIPL or other privacy laws.

l  Compliance demonstration; 

Our expertise also includes advising on  how to demonstrate the processing activities’ compliance with PIPL and other privacy laws, which involves advice about maintaining records of processing and analysing effectiveness of the measures implemented by our clients under their responsibilities, aiming to help our clients to establish their responsibilities and duties.

l  Certification completion or reviewing consultation; 

Seeking related certification is a great way of demonstration to customers, stakeholders and authorities that effective systems are in place of compliance with related privacy legislation. After learning more about your data processing activities via assessments or audits, we are also available for certification completion or reviewing consultation related to privacy protection , such as ISO/IEC 27701:2019.