Recital 74 – Responsibility and liability of the controller
Recital 74 Responsibility and liability of the controller The responsibility and liability of the controller for any processing of personal data carried out by the controller or on the…
Month: November 2018
Recital 75 – Risks to the rights and freedoms of natural persons
Recital 75Risks to the rights and freedoms of natural persons The risk to the rights and freedoms of natural persons, of varying likelihood and severity, may result from personal…
Recital 76 – Risk assessment
Recital 76 Risk assessment The likelihood and severity of the risk to the rights and freedoms of the data subject should be determined by reference to the nature, scope,…
Recital 77 – Risk assessment guidelines
Recital 77 Risk assessment guidelines Guidance on the implementation of appropriate measures and on the demonstration of compliance by the controller or the processor, especially as regards the identification…
Recital 78 – Appropriate technical and organisational measures
Recital 78 Appropriate technical and organisational measures The protection of the rights and freedoms of natural persons with regard to the processing of personal data require that appropriate technical…
Recital 79 – Allocation of the responsibilities
Recital 79Allocation of the responsibilities The protection of the rights and freedoms of data subjects as well as the responsibility and liability of controllers and processors, also in relation…
Recital 80 – Designation of a representative
Recital 80 Designation of a representative Where a controller or a processor not established in the Union is processing personal data of data subjects who are in the Union…
Recital 81 – The use of processors
Recital 81 The use of processors To ensure compliance with the requirements of this Regulation in respect of the processing to be carried out by the processor on behalf…
Recital 44 – Performance of a contract
Recital 44Performance of a contract Processing should be lawful where it is necessary in the context of a contract or the intention to enter into a contract.
Recital 45 – Fulfillment of legal obligations
Recital 45 Fulfillment of legal obligations Where processing is carried out in accordance with a legal obligation to which the controller is subject or where processing is necessary for…
Recital 46 – Vital interests of the data subject
Recital 46 Vital interests of the data subject The processing of personal data should also be regarded to be lawful where it is necessary to protect an interest which…
Recital 47 – Overriding legitimate interest
Recital 47 Overriding legitimate interest The legitimate interests of a controller, including those of a controller to which the personal data may be disclosed, or of a third party,…
Recital 48 – Overriding legitimate interest within group of undertakings
Recital 48 Overriding legitimate interest within group of undertakings Controllers that are part of a group of undertakings or institutions affiliated to a central body may have a legitimate…
Recital 49 – Network and information security as overriding legitimate interest
Recital 49 Network and information security as overriding legitimate interest The processing of personal data to the extent strictly necessary and proportionate for the purposes of ensuring network and…
Recital 50 – Further processing of personal data
Recital 50 Further processing of personal data The processing of personal data for purposes other than those for which the personal data were initially collected should be allowed only…
Recital 51 – Protecting sensitive personal data
Recital 51 Protecting sensitive personal data Personal data which are, by their nature, particularly sensitive in relation to fundamental rights and freedoms merit specific protection as the context of…
Recital 52 – Exceptions to the prohibition on processing special categories of personal data
Recital 52 Exceptions to the prohibition on processing special categories of personal data Derogating from the prohibition on processing special categories of personal data should also be allowed when…
Recital 53 – Processing of sensitive data in health and social sector
Recital 53 Processing of sensitive data in health and social sector Special categories of personal data which merit higher protection should be processed for health-related purposes only where necessary…
Recital 54 – Processing of sensitive data in public health sector
Recital 54 Processing of sensitive data in public health sector The processing of special categories of personal data may be necessary for reasons of public interest in the areas…
Recital 55 – Public interest in processing by official authorities for objectives of recognized religious communities
Recital 55Public interest in processing by official authorities for objectives of recognized religious communities Moreover, the processing of personal data by official authorities for the purpose of achieving the…
Recital 56 – Processing personal data on people’s political opinions by parties
Recital 56Processing personal data on people’s political opinions by parties Where in the course of electoral activities, the operation of the democratic system in a Member State requires that…
Recital 57 – Additional data for identification purposes
Recital 57 Additional data for identification purposes If the personal data processed by a controller do not permit the controller to identify a natural person, the data controller should…
Recital 58 – The principle of transparency
Recital 58 The principle of transparency The principle of transparency requires that any information addressed to the public or to the data subject be concise, easily accessible and easy…
Recital 59 – Procedures for the exercise of the rights of the data subjects
Recital 59 Procedures for the exercise of the rights of the data subjects Modalities should be provided for facilitating the exercise of the data subject’s rights under this Regulation,…
Recital 60 – Information obligation
Recital 60 Information obligation The principles of fair and transparent processing require that the data subject be informed of the existence of the processing operation and its purposes. The…
