Client: University of Eastern Africa, Baraton (UEAB)
Reference Number: UEAB-DPA-2025/01
Date of Issue: 15th May 2025
Deadline for Submission: 22nd May 2025
The University of Eastern Africa, Baraton (UEAB) is subject to an impending inspection by the Office of the Data Protection Commissioner (ODPC) under the Data Protection Act, 2019. In line with this, the university is seeking to engage the services of a registered and competent data protection auditing firm to carry out a pre-inspection compliance audit and assist in preparing documentation, risk assessments, remediation plans, and final reports for submission to ODPC.
To conduct an independent data protection compliance audit at UEAB and provide a comprehensive report and road map aligned with the ODPC Data Protection Audit Guidelines. The assignment will also support the university in achieving full compliance with the Data Protection Act, 2019 and its accompanying regulations.
The auditing firm shall employ industry best practices, including interviews with department heads, document reviews, sampling databases, and reference to ODPC laws and international standards (ISO 27701/27001).
The assignment shall be completed within one week from the audit start date.
The auditor shall maintain strict confidentiality of all data accessed or reviewed. A non-disclosure agreement will be signed prior to commencement.
The auditor will report to the University Data Protection Officer and coordinate with the ICT Manager, providing periodic updates to UEAB’s legal and administrative board.
WhatsApp us