ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
SAMPLE RECORD OF PROCESSING ACTIVITIES FOR COMPLIANCE WITH DIFC DP LAW 2020, ARTICLE 15
2
[Please add more information, depending on type of processing, as per entity policies, requirements, etc]
3
[COMPANY NAME] Record of Processing Activities
4
5
Name and contact details of the Controller, its appointed DPO, where applicable, and Joint Controller, if anyName and contact details of the Processor its appointed DPO, where applicable, and Sub-processors, if knownPurpose(s) of the ProcessingDescription of the categories of Data SubjectsDescription of the categories of Personal DataCategories of recipients to whom the Personal Data has been or will be disclosed, including recipients in Third Countries and International OrganisationsIdentification of the Third Country or International Organisation that the Personal Data has or will be transferred to and, in the case of transfers under Article 27, the documentation of suitable safeguards (where applicable)Time limits for erasure of the different categories of Personal Data (where possible)General description of the technical and organisational security measures referred to in Article 14(2) (where possible)
6
1
7
2
8
3
9
4
10
5
11
6
12
7
13
8
14
9
15
10
16
11
17
12
18
13
19
14
20
15
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100