TrustArc Blog

How to Meet GDPR Article 30 Requirements

December 29, 2017

The GDPR has several reporting requirements, including Article 30, which pertains to records of processing activities. The requirements for Article 30 are likely to apply to most companies because of Article 30’s broad applicability. Companies preparing to comply with Article 30 should look at how data moves through each of its business processes, not just where the data resides. In other words, “follow the data”. Article 30 requires companies to produce “records of processing activities”, which will allow regulators to see that companies are adhering to GDPR. With this goal in mind, the records should show why and how the … Continue reading How to Meet GDPR Article 30 Requirements