Workiva advert Ideagen advert TeamMate

Technical blog

Comment and opinion from our chief professional practice advisor Liz Sandwith

GDPR: Data breaches   17 May

The GDPR introduces a duty on all organisations to report certain types of personal data breach to the relevant supervisory authority. We explore the breaches and how you can be prepared.

GDPR: Keeping current with consent    16 April

When it comes to providing acceptable evidence of the right to process data, consent forms may seem the safest – and easiest – way to do so. But is it the correct way?

GDPR: Consent and legitimate interests  16 March

Is consent the most important Lawful Basis for processing?

And the winner is ...  6 March

How does your organisation minimise unconscious bias in recruitment? How is your function providing assurance on diversity? When did your function last audit the recruitment process? 

GDPR: have you addressed key risk areas?  28 February

Internal auditors have a pivotal role to play in fostering a positive approach to the GDPR and assuring management's implementation activities. 

Is plastic on your audit plan?  6 February 

Does your organisation have a reduction programme already underway? Has it been audited? Is it challenging enough? We examine the issue. 

Data analytics - A not so exclusive club  4 January

Data analytics and the use of the spreadsheet.

Apprenticeship levy - what does it mean for your business?  25 October

Understand your organisation's obligations under the new levy, and how it can access the funds and manage apprenticeships.

Buying in resources to supplement internal audit skill sets  13 October

The pitfalls and tips of a co-sourced internal audit function.

Charities – do you have an effective internal audit function?  9 October

How does your charity comply with the Charity Governance Code?

Quality assurance and improvement programme - when did you last report?  2 October

How can we deliver the best service we can?

Is your internal audit function compliant with the International Standards?  25 September

Come and find out at our annual conference.

NAO cyber guidance for audit committees  21 September

Liz Sandwith talks about the NAO's latest guidance on cyber security.

Risk management and internal audit  18 September

What is the role of internal audit in risk management?

Better KPIs for internal audit  11 September

Why do we find it so difficult to measure the performance of internal audit?

Are companies getting a true picture of their human rights performance?  5 September

Join us on 19 September for the launch of the UN Human Rights Assurance Guidance.

Internal audit planning best practice  4 September

What are the key features to consider in EQAs?

About Liz Sandwith

Liz has over 28 years’ experience in internal audit and risk management. She spent 13 years as head of internal audit at Channel 5 followed by five at Bupa, where she held a number of roles, from head of assurance, risk and compliance to head of internal audit operations. She has also worked with the Information Commissioner’s office and the Electoral Commission, as well as advising a number of local authorities on internal audit and risk management issues.

Liz served as president of the institute between 2000 and 2001 and she became the Chartered IIA’s chief professional practice advisor in May 2016.

Earlier posts from 2017

The role of internal audit in digitalisation  31 August

Why your internal audit charter is important?  29 August

What is an internal audit strategy document and how valuable is it?  21 August

How does EQA benefit internal audit and the audit committee?  14 August

Grenfell Tower - what value assurance? 11 August

Recognising internal audit’s role in cyber risk  19 July

IR35 and the public sector – to be employed, or not to be employed  6 June

Data analytics: the oldest new thing in internal audit  31 May

Giving and receiving feedback within internal audit  20 April

Giving feedback to stakeholders  10 April

Stakeholder engagement  3 April

GDPR - Mountain or molehill?  3 March

Auditing culture – why do good companies go bad?  9 February

Investors in supermarkets and internal audit – what’s the connection?  27 January

Modern slavery statements  17 January

Posts from 2016

Major cyber breach or just theft?  28 November

UK Government launches £1.9bn cyber security strategy  2 November

The new anti-bribery standard – A big step towards tackling corruption  1 November

Modern slavery - are you helping to protect your organisation's reputation?  17 October

Auditing culture - the clock is ticking  7 October

Wells Fargo: what happens when all three lines of defence fail?  19 September

Standards: towards conformance  1 September

Fitness and propriety: the next topic for internal audit?  30 August

Sage announces data breach, shares drop 3.9%  16 August

Is the retail sector unclear about role of internal audit?  5 August

IIA Standards board meeting in New York  28 July

Cyber security – a parliamentary report  15 July

Content reviewed: 17 May 2018