Ireland's Data Protection Commission published a guidance note to assist data controllers in compliance with Article 30 of the EU General Data Protection Regulation, which requires a maintained record of processing activities. The DPC drafted the guidance following a "sweep" of processing activity records of 30 public and private sector organizations and said it includes "particular emphasis" on the "positive practices identified" through the process, as well as identified shortcomings "to assist organisations as to 'What Not To Do.'"
20 April 2023
Irish DPC publishes Article 30 guidance
RELATED STORIES
Notes from the IAPP Canada: DPAs to gather for 46th Global Privacy Assembly
Presidential election 2024: Where the candidates stand on privacy and AI governance policy
A view from DC: US government builds AI governance through policies, panels and procurement
Ontario IPC's Transparency Challenge submissions showcase personal data utilization
Notes from the Asia-Pacific region: Facial recognition in focus for NZ