Principle of lawfulness, fairness and transparency
|
Purpose limitation principle
|
Data minimization principle
|
Principle of accuracy
|
Storage limitation principle
|
Principle of integrity and confidentiality
|
Principle of accountability
|
Obligation to demonstrate the consent for processing the personal data
|
Prohibition of processing the special categories of personal data
|
Reasons for derogating the exercise of the Articles 15 – 20
|
Measures of the controller in terms of providing the information to data subjects
|
Facilitating the data subject rights
|
Providing the information on action taken on a request under Articles 15 to 22 to the data subject
|
Obligations of the controller in case when the data subject request is unadopted
|
Information provided to the data subject when personal data has been acquired from a data subject
|
Additional information provided to the data subject when personal data has been acquired from a data subject
|
Information provided to the data subject when controller intends to further process the personal data for a purpose other than that for which the personal data were collected
|
Information provided where personal data have not been obtained from the data subject
|
Some additional information provided where personal data have not been obtained from the data subject
|
Principles of providing the information in terms of the Article 14, paragraph 1 and 2 of the regulation
|
Providing the information where the controller intends to process the personal data for a purpose other than that for which the personal data were obtained
|
Obligation to provide a copy of the personal data which are being processed
|
Obligations of the controller after the right to be forgotten has been applied
|
Information duty of the controller in context of the personal data processing limitation
|
Information obligation of the controller towards the recipients
|
Prohibition of the personal data processing after the Article 21, paragraph 2 has been applied
|
Obligation of the controller to inform the data subject about the to object
|
Proceedings of the controller in case of the Article 22, paragraph 2, points a) – c) application
|
Respective roles and relationships of the joint controllers vis-à-vis the data subjects
|
Guaranties of the processor for implementing the adequate protective measurements
|
Implementation of the appropriate technical and organisational measures
|
Communication the personal data breach to the data subject
|
Personal data processing that require the DPIA – general provision
|
Situation where the DPIA might be necessary
|
Professional secrecy commitment of the supervisory authority members and employees
|
The free – of -charge principle of performing the supervisory authority tasks
|
Joint liability in context of the personal data processing
|
Appropriate safeguards related to the rights and freedoms of the data subject
|