Do you keep a registry of all operations performed on personal data related to the following processes: collection, storage, use, sharing and destruction?

Related articles

• Do you support role-based access control (RBAC) for end-users / administrators?
• Are backups securely stored?
• Is physical and logical user access to audit logs restricted to authorized personnel?
• Will you secure personal data at rest through encryption, pseudonymisation and/or anonymisation rules?
• Have you performed a data processing audit, identifying all the elements requiring modification within your current data processing activities?