All DPA clauses

GDPR DPA clause · medium

Audit and Inspection Rights

The clause giving the controller information and audit/inspection rights to verify the processor’s compliance.

What the clause requires

The processor must make available information needed to demonstrate compliance and allow audits or inspections.

Why a GDPR DPA needs it

Article 28(3)(h) requires processors to make available the information needed to demonstrate compliance and to allow audits. Without it, compliance is unverifiable.

Risk if it is missing

The controller cannot verify the processor's compliance with the DPA.

Free · nothing leaves your browser

Check your DPA against all 10 clauses

Answer 10 quick questions — checked in your browser, no upload. To review the actual wording, the desktop app reads your DPA on your machine and never sends it anywhere.

Run the free DPA check

This page explains a common Data Processing Agreement clause for general information. It is not legal advice. Have a qualified professional review anything that matters.