Basic information about the regulation

Name of regulation
Mandatory scope of the processing activities record
Each controller and, where applicable, the controller's representative, shall maintain a record of processing activities under its responsibility. That record shall contain all of the following information:
(a) the name and contact details of the controller and, where applicable, the joint controller, the controller's representative and the data protection officer;
(b) the purposes of the processing;
(c) a description of the categories of data subjects and of the categories of personal data;
(d) the categories of recipients to whom the personal data have been or will be disclosed including recipients in third countries or international organisations;
(e) where applicable, transfers of personal data to a third country or an international organisation, including the identification of that third country or international organisation and, in the case of transfers referred to in the second subparagraph of Article 49(1), the documentation of suitable safeguards;
(f) where possible, the envisaged time limits for erasure of the different categories of data;
(g) where possible, a general description of the technical and organisational security measures referred to in Article 32(1).
Legislative localisation Chapter IV, Section 1, Article 30, Paragraph 1
Regulation's subject matter Records of processing activities (Article 30, Section 1, Chapter IV)
Regulation category Obligation
Regulation subcategory Prescriptive obligation
Actors concerned
Obligation Controller
Representative of the Controller
Related actors Data protection officer
Data subject
International organisation
Joint Controller
Third country
Knowww link