Audit reports. Catalan Data Protection Authority

The General Data Protection Regulation expressly provides for the possibility of carrying out investigations of entities and organizations in the form of data protection audits, within the framework of the powers of investigation attributed to the control authorities. In this sense, the Catalan Data Protection Authority prepares audit plans within the scope of its powers and functions. The objective is not only to know and improve the degree of compliance with the obligations of the rule, but also to help those responsible and those in charge of the treatment to meet the requirements of the GDPR.

Audits prepared by the APDCAT

Audit report on the obligation to appoint a data protection officer and to notify the appointment to the APDCAT (Original version available) [522,71 kB ]
Audit report on the portals of transparency (Original version available) [549,57 kB ]
Audit report on the publication of images and other personal data of students on the Internet (Original version available) [1006,77 kB ]
Audit report on the publication of the register of treatment activities (inventory of treatment activities) (Original version available) [555,15 kB ]