Search results
From GDPRhub
- Article 5 GDPR (section (1) Principles)documentation, but Articles 5(2) or 30(1)(a) GDPR require documentation and Articles 6(1)(a), 13(1)(c) and 14(1)(c) GDPR require the disclosure of the specific51 KB (6,355 words) - 08:25, 18 April 2024
- Article 6 GDPR (section (1) Legal basis for processing)in Articles 9(1)(a), 22(2)(c) and 49(1)(a) GDPR. See the commentary on Article 9(1)(a) GDPR for explicit consent. Generally, consent must be given directly108 KB (17,005 words) - 15:39, 18 March 2024
- Article 15 GDPR (section (1) The Right of Access)further details see Article 14(1)(d) GDPR. Similar to the ex-ante information in Article 13(1)(e) and 14(1)(e) GDPR, Article 15(1)(c) GDPR requires the controller73 KB (9,896 words) - 15:46, 18 March 2024
- Article 13 should not be too long. Article 12 GDPR may be limited by Union or national Law in accordance with Article 23 GDPR. Article 12(1) GDPR requires controllers76 KB (11,304 words) - 08:37, 4 March 2024
- Article 4 GDPR (section (1) Personal data)(Nomos 2018). Recital 70 GDPR. Recital 71 sentence 1 GDPR. Recital 71 sentence 1 GDPR. Recital 28 sentence 1 GDPR, such as Hansen, in Simitis, Hornung, Spieker125 KB (16,328 words) - 16:01, 8 March 2024
- Article 58 GDPR (section (1) Investigative powers)it can be assumed that the SAs may be given additional powers, but that the existing powers may not be restricted. A contrary view cannot be derived from46 KB (5,825 words) - 11:12, 7 November 2023
- Article 13 GDPR (section (1) Information the controller shall provide at the time personal data is obtained)See the commentary on Article 5(1)(b) GDPR for more details. The legal basis must necessarily be found either in Article 6(1) GDPR or, where special categories71 KB (9,532 words) - 13:30, 6 March 2024
- non-material damage. Article 32(1) GDPR reflects the principle of integrity and confidentiality enshrined in Article 5(1)(f) GDPR. The controller and the41 KB (5,197 words) - 12:17, 17 April 2024
- Article 17 GDPR (section (1) Right to erasure)of Article 21(1) GDPR. Therefore, for a claim for deletion to be admissible, all and only the conditions listed in Article 21(1) must be met. In particular61 KB (8,488 words) - 15:47, 18 March 2024
- Article 83 GDPR (section (1) Administrative fine)83(5) Var. 1 or (6) GDPR, as otherwise there could be a violation of ne bis in idem. First, it follows from this criterion that a fine may also be imposed55 KB (7,622 words) - 14:04, 7 November 2023
- Article 9 GDPR (section (1) General prohibition of processing of special categories of personal data)subsume the corresponding legal basis contained in Article 6(1)(a) GDPR, 6(1)(d) GDPR and 6(1)(e) GDPR respectively, and would require no additional correlation44 KB (5,905 words) - 14:00, 24 October 2023
- Article 6(1)(e) or (f) GDPR are clearly covered by Article 21(1) GDPR, mentioning profiling specifically is somewhat legally redundant. However, it can be seen49 KB (5,993 words) - 06:22, 16 June 2023
- Article 14 GDPR (section (1) Information the controller shall provide when personal data has not been obtained from the data subject)additional benefit of Article 14(1)(d) GDPR may be questionable, if one agrees that Article 14(1)(c) (see commentary on Article 13(1)(c) GDPR) already requires47 KB (5,644 words) - 17:49, 5 March 2024
- Article 25 GDPR (section (1) Data protection by design)paragraph (1). Although the measures should be implemented to ensure compliance with every data protection principle, and are therefore to be understood43 KB (4,675 words) - 06:43, 16 June 2023
- Article 25 (1) and (2), Article 28(1), Article 32(1) GDPR, Article 89(1) GDPR). These measures can also be regarded as measures under Article 24(1) since they30 KB (3,458 words) - 10:31, 25 April 2024
- May 2020 (Version 1.1), pp. 7-8 (available here). EDPB, ‘Guidelines 05/2020 on consent under Regulation 2016/679’, 4 May 2020 (Version 1.1), pp. 8-9 (available31 KB (3,489 words) - 16:00, 8 March 2024
- Article 28 GDPR (section (1) Processor)their agreement must be the same as those of the SCCs. The SCCs will often leave some blank spaces to be filled in or options to be selected by the parties72 KB (9,140 words) - 13:12, 2 June 2023
- agreement on joint responsibility as required under Article 26(1) of the GDPR. Article 33(1) GDPR outlines that controllers (as defined above) have an obligation54 KB (6,536 words) - 08:22, 16 June 2023
- result of an infringement of the GDPR. Article 82(1) contains the conditions for such a claim, which are to be interpreted in accordance with EU law. Such conditions33 KB (4,215 words) - 09:57, 19 March 2024
- Article 35 GDPR (section (1) Mandatory DPIA)(DPO) must also be involved in the drafting of the DPIA under Article 35(2) GDPR and Article 39(1)(c) GDPR, and their advice should be recorded by the52 KB (7,297 words) - 08:05, 18 July 2023