Plain
          Engish Privacy Audit

This page will introduce and describe our Plain English Privacy Audit Tool.
However, it will not present the entire product. Instead, it will explain our
approach and it will show you detailed samples of our work. Once you've
studied our approach, we hope you'll purchase our complete audit process.


Overview of NIST Privacy Framework

The “Core” of NIST's Privacy Framework consists of the following five
general functions which operate concurrently and continuously: Identify,
Govern, Control, Communicate, and Protect. Each general function is in turn
broken down into activities, which in turn, are broken down into tasks. When
these activities and tasks are actually being performed they are referred to as
outcomes. Our Plain English Privacy Audit Tool is organized in the same way.
Purpose of our Privacy Audit Tool

The purpose of our Audit Tool is to help you to:

•    Reduce your legal and financial exposure.
•    Meet the expectations of interested parties.
•    Establish privacy risk management controls.
•    Facilitate conversations about privacy practices.
•    Earn the trust and confidence of your stakeholders.
•    Protect your reputation and enhance your credibility.
•    Encourage personnel to identify and treat privacy risks.
•    Improve your ability to identify privacy issues and concerns.
•    Make personnel aware of privacy concerns and considerations.
•    Comply with current and emerging privacy rules and regulations.
•    Increase your ability to identify data processing privacy problems.
•    Help personnel to develop privacy procedures and set privacy goals.
•    Promote the design of products, services, and systems that respect privacy.
•    Provide a common language that your personnel can use to manage privacy.
•    Support the development of ethical privacy policies, processes, and procedures.

Overview of our Privacy Audit Tool

Our product contains three separate tools:

•  A Generic Privacy Performance Audit Tool (pdf sample)
•  A Generic Privacy Conformance Audit Tool (pdf sample)
•  A Detailed Privacy Conformance Audit Tool (pdf sample)

Our Generic Privacy Performance Audit Tool allows you to assess how
well your organization’s privacy program is performing. Use your audit
results to develop your own Privacy Performance Improvement Plan.

Our two conformance audit tools, on the other hand, allow you to identify
the gaps that exist between NIST’s recommended privacy risk management
functions, activities, tasks, and outcomes and your organization’s actual
privacy risk management functions, activities, tasks, and outcomes.
Once you’ve identified the gaps, you can develop your own
Privacy Conformance Improvement Plan
.

Plain English Privacy Performance Audit

Our Generic Privacy Performance Audit Tool will allow you to:
  • Assess how well your organization's privacy universe is being understood
  • Assess how well your organization's privacy governance structure is working
  • Assess how well your organization's personal privacy risks are being managed
  • Assess how well your organization's privacy communications are performing
  • Assess how well your organization's data processing activities are protected

Use our Generic Performance Audit Tool to evaluate the overall performance
of your organization’s privacy program. You can also use it to perform a quick
exploratory audit or to decide what general areas need more detailed attention.

This is how it works: Consider each audit task and select a response. If you
haven’t done it and it needs to be done, select DO. If you’ve already done it,
select DN. If the task is not applicable in your situation and you can justify
and explain why it should be ignored or excluded, select NA. Once you’ve
completed the audit, use your results to develop your own unique
Privacy Performance Improvement Plan.

Plain English Privacy Conformance Audits

As indicated above, our product contains two different conformance
audit tools: a generic one and a detailed one. They both contain five
sets of audit questions and they both work in the same way.

Use our  Generic Privacy Conformance Audit to do a quick exploratory
audit or to decide what general areas need more attention and use our
Detailed Privacy Conformance Audit to do a comprehensive and
thorough evaluation of your organization's privacy practices.

For each privacy audit question, three answers are possible: YES, NO, or N/A
(to save space, we use Y, N, and X). YES answers mean that your organization
is following NIST’s recommendations, NO answers mean that you are failing to
do so, while N/A answers mean that questions are not applicable in your case.
NO answers identify gaps that exist between NIST’s privacy recommendations
and your organization’s privacy practices, while N/A answers point to items
that may be ignored or excluded.

Once you’ve completed all five questionnaires, study your NO answers and
our questions and then use this information to formulate actions or steps that
need to be taken to improve your organization’s privacy practices. Then use
these details to prepare your own Privacy Conformance Improvement Plan.

Plain English Privacy Audit Tool

Table of Contents (Title 63)

1

Introduction to Privacy Audit Tool

3

2

Profile of Your Privacy Audit Project

6

3

Generic Privacy Performance Audit Tool

PDF

4

Generic Privacy Conformance Audit Tool

PDF


DETAILED CONFORMANCE AUDIT

ID

Identify Data Privacy Universe

21

GV

Establish Governance Structure

38

CT

Control How Risks are Managed

PDF

CM

Develop Communication Program

63

PR

Implement Processing Protections

69

 

Links to PDF Samples of our Audit Tool are in the right column of this table.

 

Also check out our Plain English Cybersecurity Audit Tool

Attention

Now that you understand our approach, please consider purchasing our
complete product: Title 63: Praxiom's Plain English Privacy Audit tool.

If you purchase our audit tool
you'll find that it's integrated, detailed,
exhaustive,
and easy to understand. You'll find that we've worked hard to
create a high quality product. In fact, we guarantee the quality of our product.
Title 63 is 92 pages long and comes in pdf and Microsoft docx file formats.

Place an Order 

Check our Prices

See our License


MORE PRIVACY RESOURCES

Introduction to Privacy Framework

Overview of NIST Privacy Framework

Structure of NIST Privacy Framework

Privacy Framework in Plain English

How to Create Privacy Program

Privacy Implementation Tiers

Privacy Conformance Audit

Privacy Performance Audit

Home Page

Our Library

A to Z Index

Our Customers

How to Order

Our Products

Our Prices

Our Guarantee

PRAXIOM RESEARCH GROUP LIMITED
Phone: 780-461-4514 -
info@praxiom.com

Updated on March 19, 2021. First published on March 19, 2021.

Legal Restrictions on the Use of this Page
Thank you for visiting this web page. You are, of course, welcome to view our material as often
as you wish, free of charge. And as long as you keep intact all copyright notices, you are also
welcome to print or make one copy of this page for your own personal, noncommercial,
home use. But you are not legally authorized to print or produce additional copies or to
copy and paste any of our material onto another web site or to republish it in any way.

Copyright © 2021 by Praxiom Research Group Limited. All Rights Reserved.

Praxiom Research