An industry-standard clause in the Data Processing Agreement (DPA) relates to the auditing of data flows. The DPA covers when this type of audit by a data controller can take place and any costs associated with it. If a data controller wants to audit any data flows in Planday, please contact

Planday annually renews any information security compliance certificate or voluntary registration with data authorities, as required. This includes:

  • ISO27001 audit and yearly surveillances

  • CyberEssentials

  • Registration with the ICO and Datatilsynet

Did this answer your question?