On May 25, 2018, the new EU General Data Protection Regulation, GDPR went into force. Since that date, companies need to set up a directory showing how their records are processed. How to create one is now explained in a guide put together by Bitkom, the German IT industry association.
How a company handles its data processing must be well-documented. With the GDPR, accountability and transparency requirements are even more stringent than in the past.
For example, Article 30 requires companies to put together a directory of processing activities. It documents all processes in which personal data is handled within a company or otherwise handled by authorized sub-contractors.
Bitkom helps companies explain this process with a comprehensive guide on how to create a records processing directory. The brochure explains all the terms and fundamentals as well as how to assemble various types of documentation in your organization. Practical examples make it easier to both understand and implement.
Other helpful resources: the DocuWare webinar on GDPR and GDPR White Paper.