Berichte für den Datenschutz/en: Unterschied zwischen den Versionen

← Zum vorherigen Versionsunterschied Zum nächsten Versionsunterschied →

Version vom 14. März 2024, 09:20 Uhr

Under "Data Protection → Reports", it's possible to generate a number of reports for data protection.

To generate a report, first decide which type of report it should be. After choosing the desired type, add which data the report is to be generated for (e.g. processing activity or DPIA).

Formats:
Reports are available for download as PDF or DOCX files. To generate a report and download it, click on the pink button. Then, you can choose whether to download the report as PDF or DOCX.

Remembering report options:
Some of the report options can be found for various reports. For these, the selected options are remembered within the management system and for the individual user, and then also applied for other reports with that same option. For example, if the option "Table of contents" is selected, then it will already be selected when accessing any other report pages that use this option.

Licenses:
If no valid license for HITGuard is available, this will be displayed in the footer of the report! To change this, an expert or administrator has to request/upload a license under "Administration → Licensing".

The following reports are offered in the data protection section of HITGuard:

Processing registers

Under "Data protection → Reports → Processing registers", it's possible to choose from a number of reports for processing activities.

=Own processing activity

Here, you find the report for one or more processing activities your company is responsible for.

Pre-filtered in the system are those most recent versions of processing activities with the status "Editing completed". This restriction can be adjusted as needed or removed with the "clear filter" button.

If a DPIA exists for a processing activity, its results will be added to the report.

Generate report for own processing activities

To generate a report about your own processing activities, choose the desired processing activities here. To generate and download the report, click the pink button.

Joint responsibilities

Here, you find the report for one or more processing activities that have more than one responsible party assigned to them. (Joint responsibility must be activated in the processing activity.)

Pre-filtered in the system are those most recent versions of processing activities with the status "Editing completed". This restriction can be adjusted as needed or removed with the "clear filter" button.

Generate reports for joint responsibilities

To generate a report for joint responsibilities, choose the desired processing activities here. In the report options, it's possible to configure the processing activities to be downloaded as a ZIP file. To generate and download the report, click the pink button.

On behalf of others

Here, you find the report on processing activities carried out by your organization on behalf of others.

You can either generate a report containing processing activities performed by the selected organizational area, or you can generate a report for the external organization for which you perform the processing.

Note that the selection is limited to the last completed version of the respective processing activity.

Generate report for processing activities on behalf of others

Organizational units that carry out processings:

Here, you can choose the organizational units that handle processing activities on behalf of others.
The report contains all current information on the processing activities the selected organizational units handle on behalf of others.

External responsible parties on whose behalf processing is carried out:

Here, you can choose an external responsible party your organization performs processing activities for.
The report contains all information for all processing activities that are performed for this responsible party.

Create report for processing activity on behalf of others

External processors

Here, you find the report for processing activities that other companies perform on behalf of your organization. Note that the selection is limited to the last completed version of the respective processing activity.

Generate report for external processors

Here, choose the desired external processor. The report contains all information on processing activities they perform for your organization. To generate and download the report, click the pink button.

DPIA

Under "Data protection → Reports → DPIA" you can choose whether to generate a report for the consultation of the authority or a general report on a data protection impact assessment.

Consultation of the authority

Here, you find the report for the data protection impact assessment that contains the relevant information for the consultation of the authority.

Generate consultation report for the authority

Here, first select the desired data protection impact assessment. If the DPIA contains multiple PA-responsibilities, also choose the desired PA-responsibility. To generate and download the report, click the pink button.

Report options
Table of contents	This option determines whether a table of contents is included in the report.
Attachments/evidences as zip-file	The report is downloaded in a zip-folder along with any attachments/evidences.

Generate report for consultation of the authority

General report

Here, you find the general report about the data protection impact assessments.

Generate data protection impact assessment report

Here, select the desired data protection impact assessment. The report contains all relevant information on the chosen DPIA. To generate and download the report, click the pink button.

Report options
Table of contents	This option determines whether a table of contents is included in the report.
Attachments/evidences as zip-file	The report is downloaded in a zip-folder along with any attachments/evidences.

TOMs

Here, you find the report on the technical and organizational measures and controls.

By default, the report is generated for the general TOMs. The selection can also be limited to PA-responsibles (internal or external organizational units, e.g. clients) or to company or organizational registers. PA-responsibles, company registers, and organizational registers can be combined freely. Then, also the specific TOMs for those PAs are added into the report. Specific TOMs are added for the latest completed versions of a processing activity. Not yet completed PAs are not taken into account.

TOMs Bericht erstellen

Der Bericht kann über den pinken Button heruntergeladen werden. Das Dropdown zur Einschränkung der VT-Auswahl dient zur erweiterten Konfiguration, falls die Berichtsoption "Spezifische TOMs" aktiviert ist.

Berichtsoptionen
Inhaltsverzeichnis	Diese Option bestimmt, ob im Bericht ein Inhaltsverzeichnis angedruckt wird.
Spezifische TOMs	Steuert, ob zusätzlich zu den allgemeinen TOMs auch die spezifischen TOMs einer VT im Bericht angedruckt werden.
Nur erledigte Maßnahmen und aktive Kontrollen	Schränkt die Selektion der TOMs auf wirksame Aufgaben ein.
Beschreibung	Steuert, ob zu Maßnahmen und Kontrollen auch deren Beschreibung bzw. Kontrollmaßnahme im Bericht angedruckt wird.
Anhänge/Evidenzen als Zip-Datei	Der Bericht wird gemeinsam mit etwaigen Anhängen/Evidenzen in einem Zip-Ordner heruntergeladen.

Betroffenenkategorien

Hier finden Sie den Bericht zu den Betroffenenkategorien. Dieser Bericht kann zur Auskunftserteilung verwendet werden.

Achtung: Nur als Datenschutz-Experte sichtbar!

Auskunftserteilung erstellen

Hier muss die gewünschte Betroffenenkategorie ausgewählt werden. Der Bericht enthält alle Informationen (z.B. Löschfrist) zu allen Verarbeitungstätigkeiten, in denen sie vorkommt. Sie kann somit zur Auskunftserteilung an Anfragende verwendet werden. Der Bericht kann über den pinken Button heruntergeladen werden.

@@ Zeile 74: / Zeile 74: @@
 [[Datei:DS DSFA Bericht Allgemein erstellen.png|left|thumb|901px|Generate report for DPIA]]<br clear=all>
-== <span id="toms"></span> TOMs ==
+== <span id="toms"></span>TOMs==
-Hier finden Sie den Bericht zu den technischen und organisatorischen Maßnahmen und Kontrollen.</p>Der Bericht wird standardmäßig für die allgemeinen TOMs generiert. Die Auswahl kann aber auch auf VT-Verantwortliche (interne Organisationseinheiten oder Externe (z.B. Kunden)) und auf Gesellschafts- bzw. Organisationsregister eingeschränkt werden. Eine beliebige Kombination aus VT-Verantwortlichen und Gesellschafts- bzw. Organisationsregistern ist zulässig. Dann werden für diese VTs auch die spezifischen TOMs in den Bericht aufgenommen. Zu der letzten abgeschlossenen Version einer Verarbeitungstätigkeit werden die spezifischen TOMs angedruckt. Nicht abgeschlossene Verarbeitungstätigkeiten werden nicht berücksichtigt.</p>
+Here, you find the report on the technical and organizational measures and controls.</p>By default, the report is generated for the general TOMs. The selection can also be limited to PA-responsibles (internal or external organizational units, e.g. clients) or to company or organizational registers. PA-responsibles, company registers, and organizational registers can be combined freely. Then, also the specific TOMs for those PAs are added into the report. Specific TOMs are added for the latest completed versions of a processing activity. Not yet completed PAs are not taken into account.</p>
 <big><b>TOMs Bericht erstellen</b></big></p>Der Bericht kann über den pinken Button heruntergeladen werden. Das Dropdown zur Einschränkung der VT-Auswahl dient zur erweiterten Konfiguration, falls die Berichtsoption "Spezifische TOMs" aktiviert ist.