General provisions
Principles
Rights of the data subject
Controller and processor
Transfers of personal data to third countries or international organisations
Independent supervisory authorities
Cooperation and consistency
Remedies, liability and penalties
Provisions relating to specific processing situations
Delegated acts and implementing acts
Final provisions
Art. 24 GDPR – Responsibility of the controller
Art. 25 GDPR – Data protection by design and by default
Art. 26 GDPR – Joint controllers
Art. 27 GDPR – Representatives of controllers or processors not established in the Union
Art. 28 GDPR – Processor
Art. 29 GDPR – Processing under the authority of the controller or processor
Art. 30 GDPR – Records of processing activities
Art. 31 GDPR – Cooperation with the supervisory authority
Art. 32 GDPR – Security of processing
Art. 33 GDPR – Notification of a personal data breach to the supervisory authority
Art. 34 GDPR – Communication of a personal data breach to the data subject
Art. 35 GDPR – Data protection impact assessment
Art. 36 GDPR – Prior consultation
Art. 37 GDPR – Designation of the data protection officer
Art. 38 GDPR – Position of the data protection officer
Art. 39 GDPR – Tasks of the data protection officer
Art. 40 GDPR – Codes of conduct
Art. 41 GDPR – Monitoring of approved codes of conduct
Art. 42 GDPR – Certification
Art. 43 GDPR – Certification bodies
GDPR compliance is easier with encrypted email
