Search results
From GDPRhub
- Article 33 GDPR regulates the controller and processor's obligations in case of data breach. Pragraph 1 imposes an obligation on controllers to notify the54 KB (6,536 words) - 08:22, 16 June 2023
- enforcement of the GDPR are SA's main tasks. They summarise the core idea of SA's activities. All other tasks entailed in Article 57(1) GDPR can be understood60 KB (7,796 words) - 20:12, 1 April 2024
- Article 35 GDPR (section (1) Mandatory DPIA)legitimate purpose(s) (Article 5(1)(b)); lawfulness of processing (Article 6); adequate, relevant and limited to what is necessary data (Article 5(1)(c)); limited52 KB (7,297 words) - 08:05, 18 July 2023
- to Article 32(1) GDPR would be an example of such an obligation. It is also important to stress that, without prejudice to the processor's liability under33 KB (4,215 words) - 09:57, 19 March 2024
- ng provision of Article 56(1) GDPR. In such cases, the LSA, i.e. the SA of the place where the controller's or processor's main or sole establishment is35 KB (4,017 words) - 16:04, 18 March 2024
- Article 56 GDPR (section (1) Designation of the Lead Supervisory Authority (LSA) and the Cooperation Mechanism)processor’s lead supervisory authority, version 2.1, Section 2.2, available here. Guidelines 8/2022 on identifying a controller or processor’s lead supervisory55 KB (7,446 words) - 22:28, 1 April 2024
- Article 30(1)(a) states it should contain the name and contact details of the controller and, where applicable, the joint controller(s), the controller's representative31 KB (3,327 words) - 15:31, 5 June 2023
- with Article 33(1) GDPR. Thus, since the supervisory authority should be aware of the data breach, it can also be involved in the controller’s procedure for37 KB (3,962 words) - 15:20, 16 June 2023
- Article 2 GDPR (section (1) Material scope)information onto a form. The form is stored in the hospital's old paper filing system, where each patient's papers are stored according to surname and first name34 KB (4,652 words) - 12:07, 12 November 2023
- guide the reviewer’s decision. Otherwise, it would be completely impossible to express one's own point of view. Pursuant to Article 12(1), which expressly31 KB (4,768 words) - 06:24, 16 June 2023
- to include the DPO's 'contact details', i.e. exactly the same wording used in Article 13(1)(b) GDPR. If one were to follow Apple's suggested reading, after43 KB (4,904 words) - 12:59, 21 July 2023
- Article 23 GDPR (section (1) Restrictions)subject’s rights, but not deny them. The grounds for restrictions are exhaustively listed in Article 23(1) GDPR. These grounds, listed in Article 23(1)(a)-(c)44 KB (4,896 words) - 06:25, 16 June 2023
- subject’s data by the controller triggers a data subject’s right under Article 13 and 14 GDPR. We reject a strict literal interpretation of Article 79(1) GDPR31 KB (3,550 words) - 11:11, 29 November 2023
- CJEU: The CJEU has clarified in C-132/21 that "Article 77(1), Article 78(1) and Article 79(1) of Regulation (EU) 2016/679 [...] must be interpreted as33 KB (3,641 words) - 09:51, 19 March 2024
- exercise of a SA's investigative powers under Articles 58(1)(a), (b), (c), (e) and (f) GDPR; decisions following the exercise of a SA's corrective powers30 KB (3,874 words) - 10:46, 7 December 2023
- independence and expertise in data protection matters. Paragraph 1 ensures the DPO's timely and proper involvement in any data protection issues. Paragraph29 KB (2,951 words) - 14:19, 25 July 2023
- Article 46 GDPR (section (1) Scope)Article 46 - Transfers subject to appropriate safeguards 1. In the absence of a decision pursuant to Article 45(3), a controller or processor may transfer34 KB (3,646 words) - 08:53, 27 March 2023
- objection of a SA (Article 65(1)(a) GDPR), when there are different views on which SA is the lead SA (“LSA”) (Article 65(1)(b) GDPR), and where a SA is33 KB (4,185 words) - 16:09, 2 November 2023
- prior authorization, irrespective of the requirements of paragraph 1. Article 36(1) GDPR establishes an obligation for the controller to consult the DPA31 KB (3,646 words) - 08:51, 21 July 2023
- Article 39 GDPR (section (1) DPO's Tasks)to management or the appropriate authority. Articles 39(1)(d) and (e) GDPR lay down the DPO’s obligations in relation to the Data Protection Authorities23 KB (2,165 words) - 15:10, 27 July 2023