Record of Processing Activities (RoPA) - Unicis.Tech OÜ Docs

The Record of Processing Activities (RoPA) module helps organizations comply with Article 30 of the GDPR by maintaining a structured inventory of personal data processing activities.

Organizations that process personal data are required by the GDPR to keep a Record of Processing Activities (also known as an “Article 30 record”). It provides a clear and thorough overview of the personal data a company processes, including the purposes, categories of data subjects, security measures in place, and more. Maintaining this record helps organizations verify GDPR compliance, detect risks to personal data, and respond to data subject inquiries.

Dashboard

A dashboard is provided for all Records of Processing Activities assigned to teams via tasks. The dashboard provides an overview of:

Column	Description
Register of Procedures	Name or identifier of the processing activity
Status	Current status of the record
Assigned DPO	Designated Data Protection Officer
Review	Review status of the process
Data Transfer	Indicator of cross-border data transfers
Special Category	Whether special categories of personal data are involved
Actions	Edit / Delete

Add a Record

A Record of Processing Activities can only be added via a Task in the Processing Activities tab.

1. Open a task and navigate to the Processing Activities tab
2. Click Register Record of Processing Activities
3. Follow the guided steps (required fields are marked with a red star)
4. Click Next on each step to proceed

Steps:

1. Description / Stakeholders
2. Purpose and Categories
3. Recipients
4. Transfer
5. Security Measures / Technical and Organisational Measures (TOMs)
6. Data Protection Impact Assessment

Edit

Edit a record from the dashboard by clicking Actions → Edit.

Delete

Delete a record from the dashboard by clicking Actions → Delete.

Activity Logs

Access audit logs by opening the associated task and navigating to Audit Logs → RPA Audit Logs.

Logged events:

• Created
• Updated
• Deleted