The only references to audits, are that supervisors can require an audit, processors need to allow audits by controllers, DPOs need to prepare for audits, and corporations or groups of enterprises need to have audit procedures in place.
It doesn’t say anything about what kind of audits these need to be, other than to ensure compliance with the law.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !news@beehaw.org
Breaking news from around the world.
News that is American but has an international facet may also be posted here.
Guidelines for submissions:
Where possible, post the original source of information.
If there is a paywall, you can use alternative sources or provide an archive.today, 12ft.io, etc. link in the body.
Do not editorialize titles. Preserve the original title when possible; edits for clarity are fine.
Do not post ragebait or shock stories. These will be removed.
Do not post tabloid or blogspam stories. These will be removed.
Social media should be a source of last resort.
These guidelines will be enforced on a know-it-when-I-see-it basis.
How does GDPR mandate a public audit of the code base? Is there such a provision in it? (Not a confrontational question)
It doesn’t. You can check the full text at:
https://eur-lex.europa.eu/eli/reg/2016/679/oj
The only references to audits, are that supervisors can require an audit, processors need to allow audits by controllers, DPOs need to prepare for audits, and corporations or groups of enterprises need to have audit procedures in place.
It doesn’t say anything about what kind of audits these need to be, other than to ensure compliance with the law.
They’re just saying that if they have nothing to hide, they should prove it. Not that GDPR requires an audit.