Your Record of Treatment Activities (R.A.T) is not just a procedure, it's essential, without it, the sanction becomes real and you may face problems

All companies that regularly process data must have their RAT (Record of Processing Activities) prepared, which is an essential document detailing all the personal data processing activities carried out by the company that processes data, in compliance with both art. 31 of Organic Law 3/2018, of December 5, on the Protection of Personal Data and the guarantee of digital rights, and art. 30 of Regulation (EU) 2016/679 of the European Parliament and of the Council, relating to the protection of individuals in so far as concerns the processing of personal data and the free movement of these data (GDPR).

Do you know what information the RAT should contain?

The RAT must record key aspects about the personal data being processed.

Do you know what a category of data is; which ones should be recorded and how to qualify them?

If this data is shared with other third parties, such as service providers, they must be classified, as well as the security measures and the storage period.

The RAT is the first of the documents that demonstrate the commitment that the standard requires with respect to compliance with the protection of the personal data of your customers, employees and suppliers, thus strengthening trust in the company and improving your reputation.

It is essential to comply with data protection legislation and avoid sanctions, while demonstrating your commitment to the security of the personal data of your customers and employees.

Did you know that not having a RAT when necessary is a serious violation?

In TOURISM & LAW we make ourselves available to you with the preparation of the Record of Treatment Activities, as well as all the internal documentation that a company must have in place for regulatory compliance.