Delegate seventeenth. Personal data basically, within each of the sections a checklist must be incorporated, in which the checks carried out will be included and will be qualified with a “yes/no/na”. Likewise, the level of compliance of that analyzed point will be detailed; the recommendations to be implemented and the legislation applicable to the audited point will be included. The complete audit report of amica and its special employment centers are available at the following link : saema, soemca employment and diversia employment. Is it mandatory to carry out a data protection audit?
As such, the reference regulations do not establish, as such, the obligation to carry out these processes. It is simply established among its obligations, the e commerce photo editing service action by the main actors involved in the processing of personal data in accordance with the principle of proactive responsibility. Along with this, the need to carry out these audits is expressed in articles 24.1 and 32.1, letter d) of the community regulation . In the first of them, it is established that, depending on the nature, scope, context and purposes of the treatment, as well as the risks of varying probability and severity for the rights and freedoms of natural persons, the data controller will apply appropriate technical and organizational
measures in order to guarantee and be able to demonstrate that the treatment is in accordance with this regulation. Such measures will be reviewed and updated as necessary. Regarding the second, taking into account the state of the art, the costs of application, and the nature, scope, context and purposes of the treatment, as well as risks of variable probability and severity for the rights and freedoms of natural persons. , the person in charge and the person in charge of the treatment will apply appropriate technical and organizational measures to guarantee a level of security appropriate to the risk. In this sense,