Data table

To whom are related these data ?
How long are these data kept in active environments ?
Where are these data stored ?
Which Data categories are in use within these procession operation ?
How did we obtain these data ? From whom did we collect them ?
Who can access active data ?
Which third parties (subcontractors, partners, etc.) access the data?
One category of data have not the same recipients or duration ?
A Processing include other data subjects with different data ?

1. Each controller and, where applicable, the controller's representative, shall maintain a record of processing activities under its responsibility. That record shall contain all of the following information:
(a) the name and contact details of the controller and, where applicable, the joint controller, the controller's representa­ tive and the data protection officer;
(b) the purposes of the processing;
(c) a description of the categories of data subjects and of the categories of personal data;
(d) the categories of recipients to whom the personal data have been or will be disclosed including recipients in third countries or international organisations;
(e) where applicable, transfers of personal data to a third country or an international organisation, including the identifi­ cation of that third country or international organisation and, in the case of transfers referred to in the second subparagraph of Article 49(1), the documentation of suitable safeguards;
(f) where possible, the envisaged time limits for erasure of the different categories of data;
(g) where possible, a general description of the technical and organisational security measures referred to in Article 32(1).

Article 30.1 GPDR (relating to the obligation to keep a record of processing activities)
Retour en haut