| Implementation of the appropriate technical and organisational measures |
| Assessing the appropriate level of the security account |
| Adherence to an approved code of conduct as referred to in Article 40 |
| Ensuring the activities compliance of any natural person, acting under the authority of controller or processor |
