Accuracy

  1. 34—Elements for principle of accuracy

Anonymising

  1. 33—Elements for principle of data minimization

Legitimate interest

  1. 29—Elements for principle of lawfulness

Intergrity

  1. 32—Elements for principle of integrity, confidentiality and availability

General provisions

  1. 58— Complaints against Data Controller and Data Processor

Impact assessment

  1. 53—Audit of compliance with assessment report
  2. 52—Consideration of data protection impact assessment report.
  3. 51—Prior consultation
  4. 50—Conduct of data protection impact assessment
  5. 49—Processing activities requiring data protection impact assessment.

Fairness

  1. 36—Elements for principle of fairness

Enforcement

  1. 21—Enforcement of penalty notice
  2. 20—Issuance of penalty notice
  3. 19—Appeals against enforcement notice
  4. 18—Review of enforcement notice
  5. 17—Service of enforcement notice
  6. 16—Issuance of enforcement notice

Data processor

  1. 25—Obligations of a data processor
  2. 24—Contract between data controller and data processor

Data controller

  1. 24—Contract between data controller and data processor

Automated decision making.

  1. 22—Automated individual decision making.

Binding corporate rules

  1. 43—Binding corporate rules

By design or default

  1. 28—Elements of data protection by design or default
  2. 27. Data protection by design or default

Collection

  1. 6—Mode of collection of personal data

Topics

application Automated decision making. binding corporate rules by design or default collection commercial purpose complaint consent data access request data breach Data commissioner data controller data portability data processor enforcement exemptions fairness fees general provisions impact assessment interpretation legitimate interest notification objection offences opt out particulars change Preliminary processing rectification register registration registration cancellation registration excemption renewal restriction retention right of erasure rights by others safeguards schedules scope sharing personal data storage limitation transfer