Recital 81 – The use of processors
Recital 81 The use of processors To ensure compliance with the requirements of this Regulation in respect of the processing to be carried out by the processor on behalf…
Category: Uncategorized
Recital 64 – Identity verification
Recital 64 Identity verification The controller should use all reasonable measures to verify the identity of a data subject who requests access, in particular in the context of online…
Recital 65 – Right of rectification and erasure
Recital 65 Right of rectification and erasure A data subject should have the right to have personal data concerning him or her rectified and a ‘right to be forgotten’…
Recital 66 – Right to be forgotten
Recital 66 Right to be forgotten To strengthen the right to be forgotten in the online environment, the right to erasure should also be extended in such a way…
Recital 67 – Restriction of processing
Recital 67 Restriction of processing Methods by which to restrict the processing of personal data could include, inter alia, temporarily moving the selected data to another processing system, making…
Recital 68 – Right of data portability
Recital 68 Right of data portability To further strengthen the control over his or her own data, where the processing of personal data is carried out by automated means,…
Recital 69 – Right to object
Recital 69 Right to object Where personal data might lawfully be processed because processing is necessary for the performance of a task carried out in the public interest or…
Recital 70 – Right to object to direct marketing
Recital 70 Right to object to direct marketing Where personal data are processed for the purposes of direct marketing, the data subject should have the right to object to…
Recital 71 – Profiling
Recital 71 Profiling The data subject should have the right not to be subject to a decision, which may include a measure, evaluating personal aspects relating to him or…
Recital 72 – Guidance of the European Data Protection Board regarding profiling
Recital 72 Guidance of the European Data Protection Board regarding profiling Profiling is subject to the rules of this Regulation governing the processing of personal data, such as the…
Recital 73 – Restrictions of rights and principles
Recital 73 Restrictions of rights and principles Restrictions concerning specific principles and the rights of information, access to and rectification or erasure of personal data, the right to data…
Recital 58 – The principle of transparency
Recital 58 The principle of transparency The principle of transparency requires that any information addressed to the public or to the data subject be concise, easily accessible and easy…
Recital 59 – Procedures for the exercise of the rights of the data subjects
Recital 59 Procedures for the exercise of the rights of the data subjects Modalities should be provided for facilitating the exercise of the data subject’s rights under this Regulation,…
Recital 60 – Information obligation
Recital 60 Information obligation The principles of fair and transparent processing require that the data subject be informed of the existence of the processing operation and its purposes. The…
Recital 42 – Burden of proof and requirements for consent
Recital 42 Burden of proof and requirements for consent Where processing is based on the data subject’s consent, the controller should be able to demonstrate that the data subject…
Recital 61 – Time of information
Recital 61 Time of information The information in relation to the processing of personal data relating to the data subject should be given to him or her at the…
Recital 43 – Freely given consent
Recital 43 Freely given consent In order to ensure that consent is freely given, consent should not provide a valid legal ground for the processing of personal data in…
Recital 45 – Fulfillment of legal obligations
Recital 45 Fulfillment of legal obligations Where processing is carried out in accordance with a legal obligation to which the controller is subject or where processing is necessary for…
Recital 46 – Vital interests of the data subject
Recital 46 Vital interests of the data subject The processing of personal data should also be regarded to be lawful where it is necessary to protect an interest which…
Recital 47 – Overriding legitimate interest
Recital 47 Overriding legitimate interest The legitimate interests of a controller, including those of a controller to which the personal data may be disclosed, or of a third party,…
Recital 48 – Overriding legitimate interest within group of undertakings
Recital 48 Overriding legitimate interest within group of undertakings Controllers that are part of a group of undertakings or institutions affiliated to a central body may have a legitimate…
Recital 49 – Network and information security as overriding legitimate interest
Recital 49 Network and information security as overriding legitimate interest The processing of personal data to the extent strictly necessary and proportionate for the purposes of ensuring network and…
Recital 50 – Further processing of personal data
Recital 50 Further processing of personal data The processing of personal data for purposes other than those for which the personal data were initially collected should be allowed only…
Recital 51 – Protecting sensitive personal data
Recital 51 Protecting sensitive personal data Personal data which are, by their nature, particularly sensitive in relation to fundamental rights and freedoms merit specific protection as the context of…
Recital 52 – Exceptions to the prohibition on processing special categories of personal data
Recital 52 Exceptions to the prohibition on processing special categories of personal data Derogating from the prohibition on processing special categories of personal data should also be allowed when…
