Create or modify an audit template or DPIA
Learn how to create and modify an audit template or DPIA with Dastra.
Dernière mise à jour
Cet article vous a-t-il été utile ?
English
Learn how to create and modify an audit template or DPIA with Dastra.
Dernière mise à jour
Cet article vous a-t-il été utile ?
Creating or modifying an audit template or PIA in Dastra is a breeze. To do so, access the "Audit" functionality.
To create an audit or PIA template, click the "Create Template" button on the "Audit" tab. Then you can select one of the 3 types of audit templates that exist in Dastra: automated, combined or custom.
This brings you to the template type selection interface:
By clicking on the "Automated Audit" tab, you will choose an existing predefined audit template from the Dastra Audit Library.
By clicking on "Combined Audit" will combine multiple audits into one.
By clicking on "Custom Audit" you can build your own audit template.
Unlike automated audits, custom audits are fully customisable. Based on the answers selected by respondents, you will be able to automatically generate an action plan or map the risks associated with the model.
PIA templates are included in the automated audit templates and are freely accessible from the Dastra library. To create or modify a PIA template, click on "Automated Audit", then select "PIA (CNIL) - Privacy Impact Analysis" before clicking "save".
In Dastra, PIAs are one of several automated audit models.
Once you have selected the template, you will be taken to the planning screen where you can perform one of the 2 actions below:
either modify the template by clicking on the "Modify template" button or
schedule an audit by clicking on the "Schedule an audit" button
For PIAs, an additional option is possible, if applicable: import your PIA from the CNIL tool. To do this, click on the "Import your CNIL PIA" button.
Indeed, it is possible to import a PIA made by the CNIL tool. The CNIL PIA must be extracted in .json format and imported into Dastra.
A large part of the elements will be included in the Dastra PIA.
Dastra offers a number of automated audit templates to document compliance and drive processes.
For example, templates for legitimate interest assessment (LIA) and transfer out of the EU (TIA) are included in the application.
In Dastra, you can create your own custom audit template. To do this, click on the "Custom Audit" option. This will take you to the audit template editing interface.
Build the audit template you want and click on "Save and Continue".
You can link audits to items in Dastra. By choosing the type of item being audited, you force all audit responses based on that template to be linked to an object of the chosen type. For example, you can choose that this audit template will always be linked to a process.
You can choose not to link an audit to a particular object. In this case, the response will always be linked to an organisational unit. This may be the case for global compliance audits for example.
When creating a custom template, you will need to choose a template type.
These types allow for some customisation of audit models.
Standard audit: this is a standard questionnaire
Compliance audit: currently a standard questionnaire
Impact analysis: this audit template allows a risk matrix to be displayed (with the required configuration) and to be called up at the PIA stage of a processing operation
Subcontractor audit: this audit template is called at the subcontractor recipients stage of a processing operation
Transfer Impact Audit (TIA): an audit to analyse the risks related to a data transfer outside the EU
Legal Basis Audit of the Register (LIA): audit of the legal basis of legitimate interests to ensure that the interests do not override the rights and freedoms of individuals
Training questionnaire: a questionnaire for conducting training quizzes. This type of questionnaire makes it possible to select a correct answer from the answers and to display the correct answers at the end of the questionnaire.
In Dastra, you can combine several existing audit templates into one. To do this, select the "Combined Audit" option and follow the steps.
Finally, it is possible to import one of your audit templates, in json format. To do this, when creating the audit, select the "Load a template" option.
