Belgian DPA Guidance on GDPR Article 30 Records of Processing Requirements

The Belgian Data Protection Authority (DPA) published guidance on carrying out the EU General Data Protection Regulation (GDPR) Article 30 Records of Processing Requirements.

Under the GDPR, set to go into effect on 25 May 2018, organisations will be expected to maintain extensive and up-to-date internal records of their data processing activities.

According to Article 30 of the GDPR, organisations will be held accountable for compliance with record keeping requirements, with equal responsibility given to both data controllers and data processors.

Here are some of the main points made in the Belgian DPA guidance:

How OneTrust Helps

Data mapping and inventory are critical components of any privacy program. OneTrust provides a simple and automated solution for data mapping, designed to address compliance with GDPR Article 30 record keeping requirements and self-certification with Privacy Shield for data transfers. OneTrust Data Mapping helps organizations to visualise the entire data lifecycle, maintain an evergreen data inventory (data processing register), identify gaps, and track recommendations, evidence and approvals for remediating risk.