DataFlow & Records of Processing

Try Free
Product-Inner-Banner

Data Inventory and Records of Processing Automation

New GDPR Privacy Laws

According to the new EU General Data Protection Regulation (GDPR), organizations must maintain extensive, up-to-date records of all data processing activities. Article 30 of the GDPR details that accountability is expected for compliance with record keeping requirements, from both data processors and controllers.

New California Privacy Laws (California Consumer Privacy Act / CCPA)

In the US, CCPA law now provides California residents more privacy rights, including the right to request access to their personal information. CCPA law includes a “look back” requirement, which requires organizations to make records available for the 12-month period before the date of the request when a verifiable request for access to personal information is made by a consumer. In other words, your organization should have accurate records of your consumers’ personal information dating all the way back to January 1, 2019.

Is Your Data Mapping Up to Date?

Data mapping and inventory are crucial components of your privacy program. Before you can secure data or analyze data for risks, you must understand how data flows through your organization. Only by maintaining an accurate, up-to-date inventory will you be able to respond efficiently to data subjects’ requests to access, correct, delete, or port their data.

What Does GPDR / CCPA Mean for Your Organization?

These new laws mean that companies should begin gathering and organizing their data and records as early as possible to be prepared to satisfy the look back requirement and meet the legalities of the new privacy data disclosure requirements. In order to do so, your company must have full knowledge of where all consumer personal information resides and how it flows throughout your organization; create mechanisms that will enable consumers to make data requests; train and potentially hire new resources to respond to consumer privacy requests; update company privacy policies to comply with the new information disclosure requirements; implement new dedicated internal processes to handle data requests, and more.

Sound overwhelming? Let us help you.

InfoComply offers a simple and automated solution to help you address the new privacy laws.

InfoComply is designed to address compliance with GDPR / CCPA record keeping requirements and Privacy Shield self-certification. InfoComply Data Mapping enables organizations to envision the data lifecycle in its entirety, maintain a thorough data inventory (records of processing register), identify informational gaps and track recommendations, locate and provide evidence of consumer approvals—everything you need to prepare for and meet the requirements imposed by the new privacy laws—without having to figure it all out on your own!

Why take a chance on overlooking a critical privacy right requirement when we’ve already covered the bases for you?

Try our free trial today!