Data protection documentation
- Data protection strategy, organisational guidelines and instructions for action
- Technical guidelines and instructions
- Technical-organisational measures (TOM)
- Reports (incident report, report on enquiries from data subjects and authorities, annual report, audit reports)
- Evidence (training records, incident reports, enquiries from authorities and data subjects, consents, confidentiality obligations of employees, AV audit check, key issue acknowledgement, inventory list of data carriers, input logs, threshold value check, VV check)
- Standard processes or data processing activities (personnel, CRM, video surveillance, etc.)
