Recital 64 – Identity verification
Recital 64 Identity verification The controller should use all reasonable measures to verify the identity of a data subject who requests access, in particular in the context of online…
Category: Uncategorized
Recital 80 – Designation of a representative
Recital 80 Designation of a representative Where a controller or a processor not established in the Union is processing personal data of data subjects who are in the Union…
Recital 65 – Right of rectification and erasure
Recital 65 Right of rectification and erasure A data subject should have the right to have personal data concerning him or her rectified and a ‘right to be forgotten’…
Recital 81 – The use of processors
Recital 81 The use of processors To ensure compliance with the requirements of this Regulation in respect of the processing to be carried out by the processor on behalf…
Recital 66 – Right to be forgotten
Recital 66 Right to be forgotten To strengthen the right to be forgotten in the online environment, the right to erasure should also be extended in such a way…
Recital 51 – Protecting sensitive personal data
Recital 51 Protecting sensitive personal data Personal data which are, by their nature, particularly sensitive in relation to fundamental rights and freedoms merit specific protection as the context of…
Recital 52 – Exceptions to the prohibition on processing special categories of personal data
Recital 52 Exceptions to the prohibition on processing special categories of personal data Derogating from the prohibition on processing special categories of personal data should also be allowed when…
Recital 53 – Processing of sensitive data in health and social sector
Recital 53 Processing of sensitive data in health and social sector Special categories of personal data which merit higher protection should be processed for health-related purposes only where necessary…
Recital 54 – Processing of sensitive data in public health sector
Recital 54 Processing of sensitive data in public health sector The processing of special categories of personal data may be necessary for reasons of public interest in the areas…
Recital 55 – Public interest in processing by official authorities for objectives of recognized religious communities
Recital 55Public interest in processing by official authorities for objectives of recognized religious communities Moreover, the processing of personal data by official authorities for the purpose of achieving the…
Recital 56 – Processing personal data on people’s political opinions by parties
Recital 56Processing personal data on people’s political opinions by parties Where in the course of electoral activities, the operation of the democratic system in a Member State requires that…
Recital 57 – Additional data for identification purposes
Recital 57 Additional data for identification purposes If the personal data processed by a controller do not permit the controller to identify a natural person, the data controller should…
Recital 42 – Burden of proof and requirements for consent
Recital 42 Burden of proof and requirements for consent Where processing is based on the data subject’s consent, the controller should be able to demonstrate that the data subject…
Recital 58 – The principle of transparency
Recital 58 The principle of transparency The principle of transparency requires that any information addressed to the public or to the data subject be concise, easily accessible and easy…
Recital 43 – Freely given consent
Recital 43 Freely given consent In order to ensure that consent is freely given, consent should not provide a valid legal ground for the processing of personal data in…
Recital 59 – Procedures for the exercise of the rights of the data subjects
Recital 59 Procedures for the exercise of the rights of the data subjects Modalities should be provided for facilitating the exercise of the data subject’s rights under this Regulation,…
Recital 44 – Performance of a contract
Recital 44Performance of a contract Processing should be lawful where it is necessary in the context of a contract or the intention to enter into a contract.
Recital 60 – Information obligation
Recital 60 Information obligation The principles of fair and transparent processing require that the data subject be informed of the existence of the processing operation and its purposes. The…
Recital 45 – Fulfillment of legal obligations
Recital 45 Fulfillment of legal obligations Where processing is carried out in accordance with a legal obligation to which the controller is subject or where processing is necessary for…
Recital 61 – Time of information
Recital 61 Time of information The information in relation to the processing of personal data relating to the data subject should be given to him or her at the…
Recital 46 – Vital interests of the data subject
Recital 46 Vital interests of the data subject The processing of personal data should also be regarded to be lawful where it is necessary to protect an interest which…
Recital 47 – Overriding legitimate interest
Recital 47 Overriding legitimate interest The legitimate interests of a controller, including those of a controller to which the personal data may be disclosed, or of a third party,…
Recital 48 – Overriding legitimate interest within group of undertakings
Recital 48 Overriding legitimate interest within group of undertakings Controllers that are part of a group of undertakings or institutions affiliated to a central body may have a legitimate…
Recital 49 – Network and information security as overriding legitimate interest
Recital 49 Network and information security as overriding legitimate interest The processing of personal data to the extent strictly necessary and proportionate for the purposes of ensuring network and…
Recital 50 – Further processing of personal data
Recital 50 Further processing of personal data The processing of personal data for purposes other than those for which the personal data were initially collected should be allowed only…
