What is Article 30? Article 30 requires organisations that non-occasionally process personal data to maintain records of processing activities. The records should include information such as the purpose of processing, lawful basis, categories of personal
According to GDPR Article 16, the right to rectification means that the data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or
“DPO” means Data Protection Officer. The role of the data protection officer (DPO) is to ensure that organisation processes the personal data of its staff, customers, providers or any other individuals in compliance with the applicable data protection
Digital marketing and direct marketing are based on the data that the company has collected, therefore marketing activities must comply with the GDPR as well. Consent must be obtained from the subjects and existing consent
Consent from the parents is required when processing data of children under the age of 16 for online services.
What means the Right to be Informed? Individual has the right to be informed about how and why their personal data is being processed. Grounds for processing are usually explained when asking for consent from
According to the GDPR, the data subject can withdraw their consent at any time. However, withdrawing the consent applies only to future processing of personal data, not to data that has already been processed. If
Data controller is the person or a company who defines the purpose, means and conditions of how personal data is being processed. Data processor processes personal data on behalf of the data controller and is
The DPO has generally two main tasks. To monitor the GDPR compliance operations within the organisation and interact with the supervisory authority and the data subjects whose data is being processed. Data protection officer might
Article 4 (6) of the GDPR sets the definition for a ‘filing system’. If the personal data that the company processes manually is in structured form and the processing is conducted in a database, then
Your e-mail address is only used to send you our newsletter and information about the activities of GDPR Register. You can always use the unsubscribe link included in the mail.
