Attention all US Colleges, Hotels, Airlines, Casinos, Online Merchants (who sell to the EU), Large Retailers, Hospitals and US companies who have European employers !
Your are in-scope for GDPR

Organizations in-scope for GDPR need to be compliant by May 25th and are subject to fines from the Supervisory Authority for as much as 4% of revenues or 20 million euros and are also subject to lawsuits from indivudal european data subjects or class action lawsuits as per Article 82 of GDPR. 

Controllers and Processors are equally liable regardless of who is at fault!  Third parties who receive data which is the basis of their business model will have this flow of data reduced significantly based on the rights granted to data subjects as part of Article 21 and there is no wiggle room to prevent these types of Subject Access Rights (SAR) requests from being processed. 



Social Engineering Testing Services

Is your staff properly safeguarding 
restricted information?

email phishing *  phone pretexting
Dumpster Dive *  Penetration of Sensitive Locations

All scripts are customized  by Audit Serve for  each client to provide the best possible test conditions



Cost of Service: Starting from $1795



Services in Focus

Audit Serve's GDPR  Project Impact Analysis, Project Management and/or Implementation Consulting Services 

Project Impact Analysis - Project  will provide the guidance necessary to structure the project that reduces the overall scope of the project.  Based on the walthrough of the organization's business processes Audit Serve will identify the in-scope processes which are tied to inscope applications and processors.  The Impact Analysis report produced by Audit Serve will identify all project initiatives that an organization needs to establish to become GDPR compliant.  

Ask about how we can conduct the Project Impact Analysis remotely via conference calls which would reduce the cost of this project initiative by 50%

Project Management - Audit Serve will establish a detailed project plan for all of the required tasks to complete the GDPR Implementation, Operationalize all processes, and establish ongoing GDPR compliance.  Audit Serve can also be involved in the day-to-day activities required to manage all phases of the GDPR project. 

GDPR Implementation Consulting Services 
Audit Serve can complete the following key components of the GDPR project:

- Mapping of Personal Data to Business processes which is tied to the SAR (Subject Access Rights) Requests, Disclosures (Article 13 & 14), Expressed Consents (Article 7 & 8) and business justification for retaining data (as required by Article 25)
- Establish SAR (Subject Access Rights) Request Process
- Establish process to identify inscope Processors and perform GDPR compliance validation
- Establish implementation strategy to meet Security processing (Article 32)
- Establish required GDPR Data Breach Notification process

If your organization is not able to process a Subject Access Rights (SAR) Request well in advance of the May 25th GDPR compliance date then contact Audit Serve to utilize our consulting services to perform all of the data analysis, define the components which will be requested, coordinate the data extract required to support the SAR Requests  and set-up the SAR Request administration process. If you not able to process a SAR Request by May 25th you are subject to fines from the Supervisory Authority and individual & class-action lawsuits (as per Article 82).

Audit Serve's GDPR   Project Assessment process will provide your organization a report which validates the project areas in which GDPR compliance has been reached and areas where additional work needs to be performed.   Audit Serve can also co-source with Audit Departments to conduct a GDPR Compliance Audit.

Upcoming Audit Serve Seminars

Audit Serve Seminars offered through the ISACA & IIA local chapters

 GDPR: Assessement, Implementation
and Auditing Approaches

One day Seminar Information
Two day Seminar Information

March 27 - 28
Washington DC ISACA Chapter

Arlington, VA (near Washington DC)
Registration is open!


April 11th
Greater Hartford ISACA  &  IIA Southern New England Chapter
Hartford, CT

Registration is Open!

April 16 - 17
Chicago ISACA Chapter

Registration is open!


April 24th
Detroit ISACA Chapter

Novi MI (near Detroit)
Registration is Open!

April 26th
Kansas City ISACA Chapter

Overland Park, KS (Near KC)
Registration is open!

May 1st
NY Metro ISACA Chapter

Registration information to be posted March 30th


May 3rd
Middle Tennessee ISACA Chapter

Registration information to be posted March 30th

How to Audit Agile & Waterfall
Development Methodlogies

April 27th
Kansas City ISACA Chapter

Overland Park, KS (Near KC)
Registration is Open!

October 9th
NY Metro ISACA Chapter



October 11 - 12
New England ISACA Chapter



IT Controls Required to Enforce

Data Privacy and Prevent Fraud
April 23rd
Detroit ISACA Chapter

Novi MI (near Detroit)
Registration is open!

Managing & Auditing Cybersecurity,
Data, Infrastructure and Applications

May 4th
Middle Tennessee ISACA Chapter

Registration information to be posted March 30th



AuditNet - The Global Resource for Auditors

Audit Vision

Since 1991
Join 3,500 other subscribers

Copyright © 2015. All Rights Reserved.