1 In order to demonstrate compliance with this Regulation, the controller or processor should maintain records of processing activities under its responsibility. 2 Each controller and processor should be obliged to cooperate with the supervisory authority and make those records, on request, available to it, so that it might serve for monitoring those processing operations.
This recital of the General Data Protection Regulation clarifies article 30 GDPR (Records of processing activities) and article 31 GDPR (Cooperation with the supervisory authority).*