The GDPR requires you to maintain records of your processing activities (GDPR Article 30).

To comply, you should document the lawful processing of personal data you process, where it came from and who you share it with. For each data point, you will then assess risks and threats.

Our modules allow you to easily gather and document your processing activity, electronic -or not.

Asset Inventory

Data Inventory

Data processed through data-processors

Data processed on behalf of data-controllers