Records-of-processing starter

A register that meets GDPR art. 30, ready to file or paste into your ISMS. Required for nearly every organisation handling personal data. NL and EN, downloadable as PDF and Markdown.

This is not a privacy statement (that one is for your visitors). This is the document a supervisory authority requests during an investigation: which data you process, for what purpose, on what legal basis, which processors receive it, and how long you keep it. A real working document, not a fill-in form.

All tools

Step 1: company details and which processing activities apply.

Company details

Who is the data controller?

Company name

Chamber of Commerce number

Registered address

Privacy contact email

Have you appointed a Data Protection Officer?

No, contact runs through our general detailsYes, we have a DPO