en
en

Internal GDPR Documentation

We help organisations prepare the internal GDPR documentation required to demonstrate accountability and ensure compliance with data protection requirements. The scope of internal GDPR documentation always depends on the specific activities and structure of the organisation, but certain documents are commonly required in most cases.

Typical internal GDPR documentation includes:

  • Internal personal data processing policies, including employee data processing.

  • Procedures for handling and responding to data subject rights requests.

  • Personal data breach response and incident management procedures.

  • Descriptions of organisational and technical data security measures.

  • Records of processing activities (RoPA).

  • Other GDPR-related internal documents, for example video surveillance policies where CCTV is used on company premises and employees must be properly informed.

In addition, organisations are required to assess risks related to personal data processing. This involves identifying potential data protection risks and defining mitigation measures that the organisation commits to implementing in practice.

The price of an internal GDPR documentation package starts usually from EUR 1000 and depends on the organisation’s individual circumstances, processing activities, and complexity. The final scope is agreed in cooperation with the client.

Contact us to discuss the internal GDPR documentation required for your organisation.

contact us

© 2026 BDAR Apsauga. All rights reserved.