4.4 Confidentiality

The 4.4 Confidentiality clause in ISO 19011:2018 requires auditors to protect all information obtained during an audit, ensuring it is used only for audit purposes and not disclosed without proper authorization. It emphasizes the need for written agreements, secure handling of records, and adherence to legal and contractual confidentiality obligations.