Javascript is required

How does it work?

Data mapping infography

Why do data mapping ?


Operationally oriented

Data mapping is more concrete in nature than a register for all operational staff (CDO, developers, CISOs, etc.). It will encourage you to carry out action plans, audits on the real data of your organisation


Centralized catalogue

With an asset catalogue in one place. Synchronise your catalogue with any tool


Fewer errors

A centralised mapping will limit the need for repeated entries, as your processing and rights exercise requests will get all the information they need from your mapping!


Time saving

Once you have your assets in place, it becomes a breeze to create and maintain your data processing. This will leave you more time to focus on the tasks where you add the most value


Save time by integrating our pre-configured templates

Use our library of pre-configured integrations

You will find all the most used SaaS software on the market (Linkedin, AWS, Google Ads...etc...) preconfigured with all their standard data that you can of course customise as you wish. Data processing will also be suggested to you!

TimeEfficient image

Base your data-processings on the realities of your IS

Create your data-processing sheet in a few clicks from an asset

Each asset contains many of the elements necessary to constitute a data-processing operation as defined in Article 30 (security measures, data, retention periods). Keep your data-processing easily up to date when your assets are updated!

DataCentric image

Your data in graphical format

Thanks to the different filters and formats, quickly create a relevant view for each type of data

We take you out of the filing cabinets and provide you with powerful tools to visualise your data and data-processing. Filtering by category of person, country or actor has never been so easy!

Visualize image

Simple and intuitive management of your asset catalogue

Easily integrate your existing inventory

Sort, filter and organise your assets as you see fit. If you already have a catalogue, you can integrate via API or import directly into the application.

Manage image

Manage and visualise the mapping of your subcontractors

Take control of your subcontracting chain

When you edit a subcontractor record, it will be possible to fill in and view all subsequent subcontractors with their data location

NextProcessors image

What is Data Mapping ?

Data mapping is the process of visualizing and documenting the path of data through a system or organization.

This includes :

  • Identification of sources
  • Tracking the movement of data through processes
  • Documentation of data schemas
  • Authorization management and GDPR compliance

The goal is to get a clear view to ensure data quality and security. But also, to ensure compliance and facilitate the management of data assets.

Develop a map of your personal data processing operations

As part of implementing the GDPR compliance action plan, organizations must develop comprehensive internal documentation.

This action plan concerns the processes for processing personal data. It is imperative to ensure compliance with new legal obligations.

In order to assess the impact of the regulation on your activity and to meet this requirement, you must first carry out an accurate inventory of :

  1. The various processing of personal data;
  2. The categories of personal data processed;
  3. The purposes pursued by the data processing operations;
  4. Stakeholders (internal or external) involved in these treatments. It is crucial to clearly identify the subcontracted providers to update the confidentiality clauses;
  5. Data flows, specifying the origin and destination of the data. In particular, to identify possible data transfers outside the European Union.

Steps to follow

Within your GDPR data map, for each processing of personal data, please ask yourself the following questions:


  • Register the name and contact details of the controller (and their legal representative) in the register. As well as, where applicable, the Data Protection Officer.
  • Identify who is responsible for the operational departments that process data within your organization. Make a list of subcontractors.


  • Identify the categories of data being processed.
  • Identify data that may pose risks due to its particular sensitivity. For example, data relating to health or offences.


  • Indicate the purpose(s) for which you collect or process this data (e.g. commercial relationship management, HR management, etc.).


  • Determine where the data is hosted.
  • Specify which countries the data may be transferred.


  • For each category of data, specify how long you will keep it.


  • What security measures are implemented to minimize the risk of unauthorized access to data. And, therefore, the impact on the privacy of data subjects?

Dastra GDPR Mapping Software

Do you want to easily set up and manage your data mapping ? Try Dastra GDPR Compliance Software!

A small step for DPOs, a big step for data protection is free to try, easy to set up, and work seamlessly together.

Free 30 day trial - No credit card required - No commitment

Data processing
Subscribe to our newsletter

We will send you a few emails to keep you informed of our news and what's new in our solution

* You will always be able to unsubscribe on each newsletter. Learn more.