On April 4, 2018, GIODO, the Polish data protection authority, published a guidance paper called “Tips and clarifications regarding the obligation to register processing activities and all categories of processing activities referred to in Article 30 para. 1 and 2 GDPR”.
According to Article 30(1) and (2) of the General Data Protection Regulation (GDPR), all data controllers and processors, including their representatives, must maintain a record of all their processing activities and all the categories of the processing activities. Each of these records must contain specific information, as provided for in the GDPR.
Request a Free Trial
As a trusted source of regulatory intelligence for the global payments industry, we enable organisations to manage the growing volume and velocity of regulatory risk with confidence, empowering more informed and effective decision making, in an efficient and cost-effective way.Take a Trial