The building blocks of Compliance e: stonearch@protonmail.com t: 01706 559 022
Data mapping and record of processing activities
Record of Processing Activity
It may be a legal requirement for your organisation to maintain and up to date record of your uses of personal data, a Record of Processing Activities (ROPA). The GDPR is very prescriptive about who this obligation applies to and what the register of your processing activities should contain. If this requirement applies to your organisation, the Information Commissioner’s Office can ask to see your register at any point, with a risk of regulatory action if you do not have it in place.
The ROPA is an excellent way to demonstrate how you are compliant with the legislation or identify gaps to be addressed. StoneArch have undertaken this activity with our clients and have the templates and knowledge to support you through what can otherwise be a complex process.
Records management
Our qualified and experienced records manager is here to support you with all your records and information management requirements. We can support with:
- The development of a records management policy, and retention and disposal schedule/procedure.
- Establishing the correct retention periods for the information you hold.
- Training your staff in effective records management practices.
- Implementing a file plan, retention and disposal processes, effective version control and naming conventions within SharePoint, your shared drive or other document/records management system.