The record of processing activities
Establishing a record of processing activities
On 25 May 2018, the transition period for the implementation of the GDPR ends and compliance with its stipulations becomes legally mandatory. This also means that data processing operations must satisfy the provisions laid out in the GDPR. The first challenge you will come across and thus the first step in creating a legally sound compliance system in terms of data privacy will be to draw up records of all processing activities.
Such records of processing activities are intended to enable the supervisory authority to review the respective processing operations. For this reason, such records must contain information on all data processing activities of your company. It is thus necessary to identify all data processing operations, document them in a written or electronic format and finally make them available in a concise way in your records of processing activities.