This slide deck from Squire Patton Boggs Partner Annette Demmel offers an overview of Article 30 of the GDPR, including examples of what a record of processing may look like, the information that must be included in processing records and when organizations are required to keep records.
Maintaining a Record of Data Processing Activities under the GDPR

CIPM, CIPP/A, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPT
Credits: 2
Related Stories
Sample Data Processing Agreement - Hubspot
HubSpot's Data Processing Agreement offers an example of a DPA that includes the standard contractual clauses adopted by the European Commission, definitions of pertinent terms, details of processing, obligations of processors and more.
Click To View
...
Sample Data Processing Agreement
Published: March 2018Click To View (PDF)
Article 28 of the EU’s General Data Protection Regulation requires data controllers to include in their contracts with processors certain terms and requirements. Sometimes these terms are included in the body of product and service contracts, but frequentl...
Data Protection Impact Assessment under the GDPR
Baker McKenzie offers this guidance on conducting data protection impact assessments, including insight on what types of processing may be considered high risk, what’s necessary to include in a DPIA, and when supervisory authorities should be consulted.
Click To View (PDF)
...