Recital 121 – Independence of the supervisory authorities
Recital 121 Independence of the supervisory authorities The general conditions for the member or members of the supervisory authority should be laid down by law in each Member State…
Category: Uncategorized
Recital 106 – Monitoring and periodic review of the level of data protection
Recital 106 Monitoring and periodic review of the level of data protection The Commission should monitor the functioning of decisions on the level of protection in a third country,…
Recital 107 – Amendment, revocation and suspension of adequacy decisions
Recital 107 Amendment, revocation and suspension of adequacy decisions The Commission may recognise that a third country, a territory or a specified sector within a third country, or an…
Recital 108 – Appropriate safeguards
Recital 108 Appropriate safeguards In the absence of an adequacy decision, the controller or processor should take measures to compensate for the lack of data protection in a third…
Recital 109 – Standard data protection clauses
Recital 109Standard data protection clauses The possibility for the controller or processor to use standard data-protection clauses adopted by the Commission or by a supervisory authority should prevent controllers…
Recital 110 – Binding corporate rules
Recital 110Binding corporate rules A group of undertakings, or a group of enterprises engaged in a joint economic activity, should be able to make use of approved binding corporate…
Recital 111 – Exceptions for certain cases of international transfers
Recital 111 Exceptions for certain cases of international transfers Provisions should be made for the possibility for transfers in certain circumstances where the data subject has given his or…
Recital 112 – Data transfers due to important reasons of public interest
Recital 112 Data transfers due to important reasons of public interest Those derogations should in particular apply to data transfers required and necessary for important reasons of public interest,…
Recital 113 – Transfers qualified as not repetitive and that only concern a limited number of data subjects
Recital 113 Transfers qualified as not repetitive and that only concern a limited number of data subjects Transfers which can be qualified as not repetitive and that only concern…
Recital 114 – Safeguarding of enforceability of rights and obligations in the absence of an adequacy decision
Recital 114Safeguarding of enforceability of rights and obligations in the absence of an adequacy decision In any case, where the Commission has taken no decision on the adequate level…
Recital 115 – Rules in third countries contrary to the Regulation
Recital 115 Rules in third countries contrary to the Regulation Some third countries adopt laws, regulations and other legal acts which purport to directly regulate the processing activities of…
Recital 116 – Cooperation among supervisory authorities
Recital 116 Cooperation among supervisory authorities When personal data moves across borders outside the Union it may put at increased risk the ability of natural persons to exercise data…
Recital 117 – Establishment of supervisory authorities
Recital 117 Establishment of supervisory authorities The establishment of supervisory authorities in Member States, empowered to perform their tasks and exercise their powers with complete independence, is an essential…
Recital 102 – International agreements for an appropriate level of data protection
Recital 102 International agreements for an appropriate level of data protection This Regulation is without prejudice to international agreements concluded between the Union and third countries regulating the transfer…
Recital 118 – Monitoring of the supervisory authorities
Recital 118Monitoring of the supervisory authorities The independence of supervisory authorities should not mean that the supervisory authorities cannot be subject to control or monitoring mechanisms regarding their financial…
Recital 87 – Promptness of reporting / notification
Recital 87 Promptness of reporting / notification It should be ascertained whether all appropriate technological protection and organisational measures have been implemented to establish immediately whether a personal data…
Recital 88 – Format and procedures of the notification
Recital 88 Format and procedures of the notification In setting detailed rules concerning the format and procedures applicable to the notification of personal data breaches, due consideration should be…
Recital 89 – Elimination of the general reporting requirement
Recital 89 Elimination of the general reporting requirement Directive 95/46/EC provided for a general obligation to notify the processing of personal data to the supervisory authorities. While that obligation…
Recital 90 – Data protection impact assessement
Recital 90 Data protection impact assessement In such cases, a data protection impact assessment should be carried out by the controller prior to the processing in order to assess…
Recital 91 – Necessity of a data protection impact assessment
Recital 91 Necessity of a data protection impact assessment This should in particular apply to large-scale processing operations which aim to process a considerable amount of personal data at…
Recital 92 – Broader data protection impact assessment
Recital 92Broader data protection impact assessment There are circumstances under which it may be reasonable and economical for the subject of a data protection impact assessment to be broader…
Recital 93 – Data protection impact assessment at authorities
Recital 93Data protection impact assessment at authorities In the context of the adoption of the Member State law on which the performance of the tasks of the public authority…
Recital 94 – Consultation of the supervisory authority
Recital 94 Consultation of the supervisory authority Where a data protection impact assessment indicates that the processing would, in the absence of safeguards, security measures and mechanisms to mitigate…
Recital 95 – Support by the processor
Recital 95Support by the processor The processor should assist the controller, where necessary and upon request, in ensuring compliance with the obligations deriving from the carrying out of data…
Recital 96 – Consultation of the supervisory authority in the course of a legislative process
Recital 96Consultation of the supervisory authority in the course of a legislative process A consultation of the supervisory authority should also take place in the course of the preparation…
