Recital 82
EU GDPR

(82) In order to demonstrate compliance with this Regulation, the controller or processor should maintain records of processing activities under its responsibility.

Each controller and processor should be obliged to cooperate with the supervisory authority and make those records, on request, available to it, so that it might serve for monitoring those processing operations.
=> Dossier: Proof, Records of processing activities

NEW: The practical guide PrivazyPlan® explains all dataprotection obligations and helps you to be compliant. Click here!