top of page

Audits and Assessments

Building an effective and comprehensive privacy program requires that all processes used and parties involved be up-to-date, efficient, and compliant with the various legal and regulatory requirements. This applies to a myriad of areas, such as ensuring that AI models are audited frequently to maintain a standard of processing that is free of bias, as is mandated by the New York AI Law, or ensuring that current privacy programs and practices—both internal and those of third parties—are methodically checked, revised, and upgraded to meet industry standards.

At Meru, we understand the importance of having privacy and AI programs and practices that are up-to-date, compliant, and operate seamlessly. We achieve this through our services of thorough audits and assessments.

Our auditing and assessment services team uses its vast knowledge and insights of the privacy landscape to cover various areas of the privacy programs, identifying critical and improvement areas, errors, inaccuracies and misalignments, and upcoming challenges.

AI Auditing:

  • Auditing and assessing AI technology in use for bias, ethics, and fairness

  • Assess compliance with AI regulations like EU AI Act, CCPA etc.

  • Ensure performance and accuracy audits for AI models

  • Ensure governance frameworks are in place for ethical AI use

Vendor Auditing:

  • Auditing of service providers, third-party practices, and privacy programs to ensure contractual obligations are being fulfilled and the requirements mentioned in their SLAs and MSAs are being met

  • Assessing and auditing third-party contracts and agreements to ensure they meet industry standards and compliance requirements

Security Assessments and Audits:

  • Conduct risk-based security assessments and audits aligned with CCPA “reasonable security” requirements

  • Advise on risk prioritization and develop actionable mitigation and remediation plans

Advise on Privacy Impact Assessments:

  • Advising and structuring PIAs to identify privacy risks in projects, vendors, AI models, and technology implementations

  • Evaluate PIAs to ensure alignment with GDPR, CCPA, and other regulatory requirements, recommending measures to address identified risks

  • Integrate PIA findings into Data Maps, privacy programs, and AI governance for continuous monitoring and improvement

Working on Laptop

Meru’s team of practiced privacy professionals delivers successful solutions to enable you to make the right decisions for your business at the right time.

Resources

Find interesting topics and news related to Privacy and Information Governance.

Cross Functional Alignment and Accountability

Cross Functional Alignment and Accountability

Chocolate or Vanilla?

Chocolate or Vanilla?

Simplify for Success -Conversation with Alexandra Ebert

Simplify for Success - Conversation with Alexandra Ebert

bottom of page