What is a Personal Data Inventory?

What is a Data Inventory? | Personal Data Protection Lawyer | Izmir Lawyer | Izmir Law Firm

Kişisel veri envanteri, Data controllers detail their personal data processing activities, which are carried out in accordance with their business processes, by associating them with the purposes and legal basis for personal data processing, data category, recipient group to whom the data is transferred, and the data subject group; and by explaining the maximum retention period necessary for the purposes for which the personal data is processed, the personal data intended to be transferred to foreign countries, and the measures taken regarding data security. inventoryIt expresses i.

Accordingly, the Inventory is a type of report that will emerge as a result of a detailed analysis conducted by data controllers who process personal data within the scope of their activities. This analysis includes evaluating all processes, examining all activities within these processes, identifying each piece of personal data processed individually, determining the purposes and legal grounds for processing this personal data, whether it has been transferred, to whom it has been transferred, to whom the processed personal data belongs, the retention period determined by the data controller for each piece of personal data, whether it has been transferred abroad, and what technical or administrative measures have been taken for the security of the data.

The reason for imposing the obligation to prepare an inventory is to ensure that data controllers comply with the Law in all processes related to their activities; in other words, to prevent violations of the Law.
The aim is to easily determine whether or not a personal data processing situation has occurred. In other words, it is a form of self-monitoring by the data controller regarding the compliance of personal data processing activities with the Law.

Kişisel Veri Envanteri Örneği — **Sample personal data inventory published by the Personal Data Protection Authority.**

Who is responsible for preparing the inventory?

Regulation on the Registry of Data Controllers Data controllers who are obligated to register in the registry under Article 5, Personal Data Processing InventoryThey are responsible for preparing it. Information to be disclosed to the Registry in registration applications is subject to Personal Data Processing. InventoryIt is prepared based on this. Data controllers exempt from registration obligations. from here You can learn.

Veri Envanteri, Aydınlatma Metinleri, Veri Saklama & İmha Politikası ve Veri Sorumluları Sicili uyumlu olmalıdır. — **Information Texts, Explicit Consent Texts, Data Retention and Destruction Policy, and Data Controllers Registry registration must be prepared in accordance with the Data Inventory.**

How to Prepare an Inventory?

You can follow these steps when preparing your Personal Data Inventory. Regarding the minimum elements that should be included in a personal data inventory: our article You can check it out.

Identification of Personal Data Based on Process or Activity
Determining the Nature of the Personal Data Identified
Determining the Legal Basis for Processing Personal Data
Determining the Purposes of Personal Data Processing
Identifying the Data Subject Group
Determining the Retention Period of Processed Personal Data
Identifying the Recipients/Recipient Groups to Whom Processed Personal Data is Transferred
Identifying Personal Data Transferred to Foreign Countries
Determining the Technical and Administrative Measures Taken for the Processed Personal Data

For more detailed information you can visit our Contact page.

For our other articles we have prepared under the Personal Data Protection Law;

Address: Nergis Neighborhood, Girne Boulevard No: 83, Floor 2, Apartment 2, Karşıyaka, İzmir

E-mail: [email protected]

Phone: +90 534 415 52 56

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	This cookie, set by the GDPR Cookie Consent plugin, is used to record user consent for cookies in the "Advertising" category.
cookielawinfo-checkbox-analytics	11 months	This cookie is set by the GDPR Cookie Consent add-on. Cookies are used to store user consent for cookies in the "Analytics" category.
cookielawinfo-checkbox-functional	11 months	This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consent for cookies in the "Functional" category.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consent for cookies in the "Mandatory" category.
cookielawinfo-checkbox-others	11 months	This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consent for cookies in the "Other" category.
cookielawinfo-checkbox-performance	11 months	This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consent for cookies in the "Performance" category.
CookieLawInfoConsent	1 year	It records the default button status and CCPA status for the relevant category. It only works in conjunction with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent add-on and is used to store whether the user consents to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
spu_conversion_7750	7 days	This cookie is set by the WP POPUPS plugin. It tracks whether the pop-up on the website's information page has been closed or not.
spu_conversion_7751	7 days	This cookie is set by the WP POPUPS plugin. It tracks whether the pop-up on the information page for service users has been closed or not.
spu_conversion_7752	7 days	This cookie is set by the WP POPUPS plugin. It tracks whether the pop-up on the job application information page has been closed.

Cookie	Duration	Description
_ga	2 Years	The _ga cookie, installed by Google Analytics, calculates visitor, session, and campaign data, and also tracks site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to uniquely identify visitors.
_ga_5TB63MEG1H	2 years	This cookie is installed by Google Analytics.
CONSENT	2 years	YouTube sets this cookie through embedded YouTube videos and records anonymous statistical data.

Cookie	Duration	Description
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth, determining whether the user will receive the new or old player interface.
YSC	session	The YSC cookie is set by YouTube and is used to track views of embedded videos on YouTube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of a user who is using an embedded YouTube video.
yt-remote-device-id	never	It stores the user's video player preferences using an embedded YouTube video.

What is a Personal Data Inventory?