A register is kept of persons authorized to process personal data. The records include, among others: the date of granting access to personal data, the date of revoking access and the scope of authorization.