NOREA Guide Privacy Control Framework

Control objectives and controls for privacy audits and assurance engagements

This document presents the Privacy Control Framework of NOREA (Dutch Association of
chartered IT-auditors / Nederlandse Orde van Register EDP-auditors), henceforth in this
document referred to as “PCF”.

Objectives of the Privacy Control Framework
The PCF’s primary objective is to provide guidance to (audit) professionals in assessing
whether an entity’s control objectives regarding privacy and personal data protection are
achieved. As such, the PCF can be used as the starting point for tailored privacy audits. The
PCF contains the prescribed control objectives and illustrative controls for privacy assurance
assignments based on the Assurance 3000 standard (‘NOREA Richtlijn 3000’, also see
subsection 5 below).
In addition, the PCF can be deployed by an entity to assess the adequacy of privacy controls or
to determine the gaps between the current state of privacy

logo experttube

Video's op het gebied van Audit & Control, Actuariaat & Risk Management, Juridisch & Fiscale Zaken, Pensioenen, Schade & Hypotheken, Compliance en Investment Management.

Bekijk ons volledige overzicht op

logo CareerTube

Videoplatform met werkenbij video's van toonaangevende organisaties in de financiële wereld. Met een focus op de finance specialisatie zorgt de koppeling met de 17 (niche) vacaturesites van CareerGuide direct voor een relevant bereik.

Bekijk ons volledige overzicht op