Why are preventative controls generally preferred to detective controls?

Which of the following elements is important for an internal auditor to consider when performing a privacy risk assessment of an organization?
I.Areas where personal information is collected, used, stored, and disseminated.
II.
Inherent risk.
III.
Privacy practices of competitors.
IV.
Third-party recipients of information.

According to the Standards, which of the following is not a consideration when exercising due professional care for an assurance engagement?

Line management of a manufacturing operation requests an operational audit. They are seeking recommendations for policies and procedures to enhance control over the operation. What should the internal audit activity do?

A high-volume retailer of consumer goods has used point-of-sale data to record sales and update inventory records for several years. When price changes are scheduled, corporate headquarters downloads a price change file to a computer server system at each store. Each store's assistant manager is responsible for checking the server for downloads and running the program that updates the store's price file at the authorized price update time. In comparison with having headquarters initiate the price update centrally, this approach to price updating will most likely: