| Subject-matter (Article 1) |
| Aim of the regulation (Article 1) |
| Free movement of personal data (Article 1) |
| Positive definition of the material scope (Article 2) |
| Negative definition of the material scope (Article 2) |
| Processing of personal data by the Union institutions, bodies, offices and agencies (Article 2) |
| Application of Directive 2000/31/EC (Article 2) |
| Territorial scope for the EU subjects (Article 3) |
| Territorial scope for the non-EU subjects (Article 3) |
| Territorial scope for the place under the law of the member state (Article 3) |
| Personal data (Article 4) |
| Processing (Article 4) |
| Restriction of processing (Article 4) |
| Profiling (Article 4) |
| Pseudonymization (Article 4) |
| Filling system (Article 4) |
| Controller (Article 4) |
| Processor (Article 4) |
| Recipient (Article 4) |
| Third party (Article 4) |
| Consent (Article 4) |
| Personal data breach (Article 4) |
| Genetic data (Article 4) |
| Biometric data (Article 4) |
| Data concerning health (Article 4) |
| Main establishment (Article 4) |
| Representative (Article 4) |
| Enterprise (Article 4) |
| Group of undertakings (Article 4) |
| Binding corporate rules (Article 4) |
| Supervisory authority (Article 4) |
| Supervisory authority concerned (Article 4) |
| Cross-border processing (Article 4) |
| Relevant and reasoned objection (Article 4) |
| Information society service (Article 4) |
| International organization (Article 4) |
| Principle of lawfulness, fairness and transparency (Article 5) |
| Purpose limitation principle (Article 5) |
| Data minimization principle (Article 5) |
| Principle of accuracy (Article 5) |
| Storage limitation principle (Article 5) |
| Principle of integrity and confidentiality (Article 5) |
| Principle of accountability (Article 5) |
| Consent of the data subject (Article 6) |
| Performance of a contract (Article 6) |
| Compliance with a legal obligation (Article 6) |
| To protect the vital interests of the data subject or of another natural person (Article 6) |
| Performance of a task carried out in the public interest (Article 6) |
| Purposes of the legitimate interests pursued by the controller or by a third party (Article 6) |
| Implementation of the particular requirements for the processing in terms of the paragraph 1, points c) and e) of the regulation (Article 6) |
| Basis for the processing referred to in point (c) and (e) of paragraph 1 (Article 6) |
| Processing for a purpose other than that for which the personal data have been collected (Article 6) |
| Obligation to demonstrate the consent for processing the personal data (Article 7) |
| Transparency of the consent for personal data processing (Article 7) |
| The right to withdraw his or her consent at any time (Article 7) |
| Assessing the consent given (Article 7) |
| Requirements for the information society services in context of the child (Article 8) |
| Obligations of the controller on context of the child when processing the personal data (Article 8) |
| Restrictions in terms of the article 8, paragraph 1 of the regulation (Article 8) |
| Prohibition of processing the special categories of personal data (Article 9) |
| Exclusions from the prohibition of processing the special categories of personal data (Article 9) |
| Provisions to the processing of special categories of personal data in terms of the paragraph 2, point h) of the regulation (Article 9) |
| Further conditions regarding the processing of genetic data, biometric data or data concerning health (Article 9) |
| Processing of personal data relating to criminal convictions and offences (Article 10) |
| Exemption from the obligation to maintain, acquire or process additional information in order to identify the data subject (Article 11) |
| Reasons for derogations of exercising the articles 15 – 20 of the regulation (Article 11) |
| Measures of the controller in terms of providing information to data subjects. (Article 12) |
| Facilitating the data subject rights exercising under the Articles 15 to 22 (Article 12) |
| Providing the information on action taken on a request under Articles 15 to 22 to the data subject (Article 12) |
| Obligations of the controller when the data subject request is unadopted (Article 12) |
| Rights of the controller in context of the inappropriate requests from the data subject (Article 12) |
| Additional information claims from the controller (Article 12) |
| Providing the information in terms of Articles 13 and 14 (Article 12) |
| The right of the Commission to act in terms of the Article 92 of the regulation (Article 12) |
| Information provided to the data subject when personal data has been acquired from a data subject (Article 13) |
| Additional information provided to the data subject when personal data has been acquired from a data subject (Article 13) |
| Information provided to the data subject when controller intends to further process the personal data for a purpose other than that for which the personal data were collected (Article 13) |
| Exemption from exercising the paragraphs 1 – 3, Article 13 of the regulation (Article 13) |
| Information provided where personal data have not been obtained from the data subject (Article 14) |
| Some additional information provided where personal data have not been obtained from the data subject (Article 14) |
| Principles of providing the information in terms of the Article 14, paragraph 1 and 2 of the regulation (Article 14) |
| Providing the information where the controller intends to further process the personal data for a purpose other than that for which the personal data were obtained (Article 14) |
| Exemptions from the obligation of the controller to provide information in terms of the Article 14, paragraphs 1 – 4 of the regulation (Article 14) |
| Right of the data subject to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed (Article 15) |
| Right to be informed of the appropriate safeguards pursuant to Article 46 relating to the transfer (Article 15) |
| Obligation to provide a copy of the personal data undergoing processing (Article 15) |
| Limitation of the negative implications regarding the the right to obtain a copy referred to in paragraph 3 of the regulation (Article 15) |
| Right to rectification (Article 16) |
| Reason for eligibility to exercise the right to be forgotten (Article 17) |
| Obligations of the controller when the right to be forgotten has been applied (Article 17) |
| Exemptions from exercising the Article 17, paragraph 1 and 2 of the regulation (Article 17) |
| Restraining the personal data processing (Article 18) |
| Processing of the personal data after the application of the right to restriction of processing (Article 18) |
| Obligation of the controller regarding the processing limitation (Article 18) |
| Information obligation of the controller towards the recipients (Article 19) |
| Right to data portability (Article 20) |
| Portability of the personal data from one controller to another (Article 20) |
| Limitation of the right to obtain the personal data (Article 20) |
| Limitation of the negative implications in context of the other subjects rights (Article 20) |
| Right to object (Article 21) |
| Right to object on case of the direct marketing purposes (Article 21) |
| Prohibition of the personal data processing after the Article 21, paragraph 2 application (Article 21) |
| Obligation to inform the data subject in context of the right to object (Article 21) |
| Application of the right to object using the automated services (Article 21) |
| Right to object in context of the personal data processing for the purposes of scientific, historical or statistical reasons (Article 21) |
| Right not to be subject to a decision based solely on automated processing (Article 22) |
| Restriction of the Article 22, paragraph 1 application (Article 22) |
| Proceedings of the controller in case of the Article 22, paragraph 2, points a) – c) application (Article 22) |
| Decisions referred to in Article 22, paragraph 2 of the regulation (Article 22) |
| Restrictions of the scope of rights and obligations settled in the Articles 12 – 22, 34 and 5 of the regulation (Article 23) |
| Minimum scope of the individual provisions in terms of the Article 23, paragraph 1 of the regulation (Article 23) |
| Responsibilities of the controller in personal data processing (Article 24) |
| Implementation of appropriate data protection policies by the controller (Article 24) |
| Obligations fulfillment by the controller (Article 24) |
| Implementation of the appropriate technical and organisational measures (Article 25) |
| Processing of the personal data “by default” (Article 25) |
| Approved certification mechanism pursuant to Article 42 (Article 25) |
| Personal data processing by the joint controllers (Article 26) |
| Respective roles and relationships of the joint controllers vis-à-vis the data subjects (Article 26) |
| Exercising his or her rights under this Regulation in respect of and against each of the controllers (Article 26) |
| Designation of the representative in the Union (Article 27) |
| Limitation of applying the obligations in terms of Article 27, paragraph 1 of the regulation (Article 27) |
| Assignation of the place of activity of the controller outside the EU (Article 27) |
| Delegation scope of the controller or processor (Article 27) |
| Legal instruments of remedies against the controller or processor (Article 27) |
| Guaranties of the processor for implementing the adequate measurements (Article 28) |
| Conditions for engagement of the other processor to data processing (Article 28) |
| Minimal scope of the contract essentials between the Controller and Processor (Article 28) |
| Designation of the identical scope of the responsibilities fot the other processor (Article 28) |
| Certification mechanism as referred to in Article 42 of the processor (Article 28) |
| Standard contract clauses between the Controller and Processor (Article 28) |
| Setting the standard contract clauses settled by the Commission (Article 28) |
| Standard contractual clauses settled by the supervisory authority (Article 28) |
| Contract or other legal document in terms of the Article 28, paragraphs 3 and 4 of the regulation (Article 28) |
| Consequences of misconducting the purposes and instruments in the process of personal data processing by the processor (Article 28) |
| Obligation of the processor to accept the instructions of the controller (Article 29) |
| Mandatory scope of the records (Article 30) |
| A record of all categories of processing activities carried out on behalf of a controller (Article 30) |
| Format of the records in terms of the Article 30, pragraphs 1 and 2 of the regulation (Article 30) |
| Making the record available to the supervisory authority on request (Article 30) |
| Exemption from the obligations in terms of the Article 30, paragraph 1 and 2 of the regulation (Article 30) |
| Cooperation with the supervisory authority (Article 31) |
| Implementation of the appropriate technical and organisational measures (Article 32) |
| Assessing the appropriate level of security account (Article 32) |
| Approved code of conduct as referred to in Article 40 or an approved certification mechanism as referred to in Article 42 (Article 32) |
| Ensuring the compliance in activities on behalf the Controller or Processor in context of the regulation (Article 32) |
| Period for personal data breach declaration (Article 33) |
| Data breach notification to the controller (Article 33) |
| Minimal content of the personal data breach notification (Article 33) |
| Notification of the additional information in context of the personal data protection (Article 33) |
| Documentary measurements in personal data protection breach (Article 33) |
| Notification of the personal data breach to the data subject (Article 34) |
| Form of the personal data breach notification in terms of the Article 34, paragraph 1 of the regulation (Article 34) |
| Exemption from the obligation to notify the data subject (Article 34) |
| Competency of the supervisory authority in context of the notification obligation of the controller (Article 34) |
| Type of processing that requires the DPIA – general provision (Article 35) |
| Cooperation between the controller and data protection officer (Article 35) |
| Processing that requires the obligatory DPIA (Article 35) |
| List of the kind of processing operations which are subject to the requirement for a data protection impact assessment (Article 35) |
| List of the kind of processing operations for which no data protection impact assessment is required (Article 35) |
| Consistency mechanism referred to in Article 63 (Article 35) |
| Minimal content of the DPIA (Article 35) |
| Assessing the impact of the processing operations performed by such controllers or processors (Article 35) |
| Views of data subjects or their representatives on the intended processing (Article 35) |
| Exemption from processing the DPIA (Article 35) |
| Situation where the DPIA is necessary (Article 35) |
| Conditions that requires the prior consultations with supervisory authority (Article 36) |
| Competency of the supervisory authority in case of specific situations (Article 36) |
| Information provided to the consulting the supervisory authority pursuant to paragraph 1 (Article 36) |
| Consultations during the preparation of a proposal for a legislative measure (Article 36) |
| Consultations with the supervisory authority in the area of the social policy and public health policy (Article 36) |
| Obligatory designation of the data protection officer (DPO) (Article 37) |
| Appointing the single data protection officer providing that a data protection officer is easily accessible (Article 37) |
| Designation of a single data protection officer may be designated for several such authorities or bodies (Article 37) |
| Facultative designation of the DPO (Article 37) |
| Basic requirements for the DPO status (Article 37) |
| Appointment of the employee to DPO position (Article 37) |
| Publication of the contact details of the data protection officer (Article 37) |
| Responsibility of the controller and processor in context of the DPO (Article 38) |
| Supporting the data protection officer in performing the tasks referred to in Article 39 (Article 38) |
| Organizational status of the DPO (Article 38) |
| Contacting the DPO (Article 38) |
| Secrecy obligation of the DPO (Article 38) |
| DPO and its other tasks duties (Article 38) |
| Responsibility o the data protection officer (Article 39) |
| Other tasks of the DPO (Article 39) |
| Encouraging the drawing up of codes of conduct intended to contribute to the proper application of this Regulation (Article 40) |
| Codes of conduct (Article 40) |
| Implementation of the codes of conduct by subjects, that are outside the scope of this regulation (Article 40) |
| Mandatory monitoring of compliance (Article 40) |
| Submitting the draft code, amendment or extension to the supervisory authority which is competent pursuant to Article 55 (Article 40) |
| Registration and publication of the code (Article 40) |
| Submitting the code or draft of the code to the Board (Article 40) |
| Submitting the code or draft of the code to the Board (Article 40) |
| Designation of the general validity of the approved code of conduct (Article 40) |
| Publication of the valid and approved codes of conduct (Article 40) |
| Collecting all approved codes of conduct, amendments and extensions in a register (Article 40) |
| Monitoring of compliance with a code of conduct pursuant to Article 40 (Article 41) |
| Basic criteria for accreditation (Article 41) |
| Submitting the draft criteria for an accreditation of a body (Article 41) |
| Measurements in case of breaching the code of conduct by the Controller or Processor (Article 41) |
| Reasons for an accreditation withdrawal (Article 41) |
| Limitation of Article 41 application in context of the public authorities and bodies (Article 41) |
| Support in the process of certification mechanisms implementation (Article 42) |
| Demonstrating the existence of appropriate safeguards provided by controllers or processors (Article 42) |
| Transparent certification process (Article 42) |
| Responsibility of the Controller and Processor in process of the certification (Article 42) |
| Common certification and the European Data Protection Seal (Article 42) |
| Providing the information and access which are necessary to conduct the certification procedure (Article 42) |
| Certification validity period and prolongation (Article 42) |
| Certification mechanisms and data protection seals and marks publication (Article 42) |
| Issuing and renewal of the certification (Article 43) |
| Accreditation conditions for the accreditation subjects (Article 43) |
| Implementation criteria for the accreditation process of the Certification subject (Article 43) |
| Validity of the accreditation and renewal conditions (Article 43) |
| Information obligation of the Certification subject (Article 43) |
| Certification criteria publications (Article 43) |
| Accreditation of a certification body revocation (Article 43) |
| Certification requirements settled by the Commission (Article 43) |
| Technical norms for the certifications mechanisms, seals and marks (Article 43) |
| Basic conditions for the personal data transfer (Article 44) |
| General conditions for personal data transfer (Article 45) |
| Assessing the adequacy of the level of protection (Article 45) |
| Decision of the adequate level of protection of personal data (Article 45) |
| Monitoring activity of the Commission (Article 45) |
| Derogation, novelization or detention of the decision of the Commission in terms of Article 45, paragraph 3 (Article 45) |
| Consultations with the third country or international organization (Article 45) |
| Exemption from the decisions under the Article 45, paragraph 5 of the regulation (Article 45) |
| Adequate level of personal data protection on the parts of the third countries or international organizations (Article 45) |
| Validity of the decisions, published under the Article 25, paragraph 6 of the Directive 95/46/ES (Article 45) |
| Personal data transfer In the absence of a decision pursuant to Article 45(3) (Article 46) |
| Setting up the appropriate safeguards referred to Article 46, paragraph 1 of the regulation (Article 46) |
| Priority forms and approaches to setting up the appropriate safeguards referred to Article 46, paragraph 1 of the regulation (Article 46) |
| Consistency mechanism application referred to in Article 63 (Article 46) |
| Validity of the decisions, published in terms of the Article 26, paragraph 2 of the Directive 95/46/ES (Article 46) |
| Binding corporate rules in accordance with the consistency mechanism set out in Article 63 (Article 47) |
| Minimal scope of the binding corporate rules referred to in paragraph 1 (Article 47) |
| Exchange of information between controllers, processors and supervisory authorities for binding corporate rules (Article 47) |
| Mutual legal assistance between the requesting third country and the Union or a Member State (Article 48) |
| Conditions for personal data transfer in case of appropriate safeguards absence (Article 49) |
| Specifications to the personal data transfer in terms of the Article 49, paragraph 1, point g of the regulation (Article 49) |
| Derogations from the personal data transfer rules (Article 49) |
| Public interest in the EU law or Member state law in context of the personal data transfer (Article 49) |
| Transfer limitation of the specific category of the personal data transfer (Article 49) |
| Documentation of the assessment or suitable safeguards (Article 49) |
| Activity of the Commission and supervisory authorities in context of the international organization support (Article 50) |
| Establishing the supervisory authority (Article 51) |
| Activity of the supervisory authority (Article 51) |
| Designating the supervisory authority in context of the representation in the Board (Article 51) |
| Notification obligation of the member state in terms of the Chapter VI of the regulation (Article 51) |
| Independence of the supervisory authority (Article 52) |
| Independence of the supervisory authority members (Article 52) |
| Obligation of the supervisory authority members to refrain from any action incompatible with their duties (Article 52) |
| Obligation to provide the conditions for supervisory authority activities (Article 52) |
| Conditions for supervisory authority staff selection (Article 52) |
| Financial control of the supervisory authority (Article 52) |
| Appointing the members of the supervisory authority (Article 53) |
| Basic requirements for the supervisory authority members (Article 53) |
| Derogations of the supervisory authority member duties (Article 53) |
| Abrogation of the supervisory authority member (Article 53) |
| Minimal obligation requirements for the member states in context of establishing supervisory authority (Article 54) |
| Professional secrecy commitment (Article 54) |
| Competence of the supervisory authority (Article 55) |
| Exemption from the application of the Article 56 of the regulation (Article 55) |
| Derogation of the supervisory authority competence in context pf the judicial power (Article 55) |
| Competence of the lead supervisory authority in terms of the Article 60 of the regulation (Article 56) |
| Supervisory authority right on context of the complaint (Article 56) |
| Obligations of the supervisory authority after receiving the complaint in terms of the Article 56, paragraph 2 of the regulation (Article 56) |
| Decision of the lead supervisory authority to handle the case (Article 56) |
| Decision of the lead supervisory authority to reject the case (Article 56) |
| The lead supervisory authority and the cross-border processing (Article 56) |
| Supervisory authority territorial activity scope (Article 57) |
| Facilitation of the complaints submission process (Article 57) |
| Free – of -charge principle of performing the supervisory authority tasks (Article 57) |
| Services charge in context of the unfounded or excessive requests (Article 57) |
| Investigative powers of the supervisory authority (Article 58) |
| Corrective powers of the supervisory authority (Article 58) |
| Authorization and advisory powers of the supervisory authority (Article 58) |
| The exercise of powers on the part of the supervisory authority (Article 58) |
| Right of the supervisory authority to bring infringements of this Regulation to the attention of the judicial authorities (Article 58) |
| Implementation of the additional rights for the supervisory authority (Article 58) |
| The annual report on the supervisory authority activities (Article 59) |
| Cooperation between the Lead supervisory authority and respective supervisory authorities (Article 60) |
| Cooperation between the supervisory authorities (Article 60) |
| Communication in case of the relevant information on the matter to the other supervisory authorities concerned (Article 60) |
| Lead supervisory authority proceedings in case of the disagreement with the objection (Article 60) |
| Lead supervisory authority proceedings in case of acceptance of the objection (Article 60) |
| Biding force of the decision draft for the other supervisory authorities (Article 60) |
| Notification obligation of the Lead supervisory authority in case of the submitted appeal (Article 60) |
| Notification obligation of the Lead supervisory authority in case of rejection of the submitted appeal (Article 60) |
| Lead supervisory authority and other supervisory authorities proceedings in case of the partial rejection of the submitted appeal (Article 60) |
| Obligations of the Controller (or Processor) after the decision has been notified (Article 60) |
| Proceedings in case of the urgent need to act (Article 60) |
| Ways of providing the information between the lead supervisory authority and respective supervisory authorities (Article 60) |
| Providing the information and cooperation between the supervisory authorities (Article 61) |
| An appropriate measures required to reply to a request of another supervisory authority (Article 61) |
| Requests for assistance or cooperation (Article 61) |
| Reasons for refusing the request by the supervisory authority (Article 61) |
| Information that are provided to the requesting supervisory authority by the requested supervisory authority (Article 61) |
| Means of providing the information by the requested supervisory authorities (Article 61) |
| Basic rules for cooperation between the supervisory authorities (Article 61) |
| A provisional measure on the territory of the individual Member State in accordance with Article 55(1) (Article 61) |
| Specification of the forms and means of cooperation between the supervisory authorities (Article 61) |
| Joint operations and joint investigation (Article 62) |
| Competency of the supervisory authorities in joint operations (Article 62) |
| Right of the supervisory authority personal (Article 62) |
| Responsibility for activities of the dispatching supervisory authority personal (Article 62) |
| Reimbursement of the damage caused by the supervisory authority personal (Article 62) |
| Prohibition of requesting the reimbursement in terms of the Article 62, paragraph 4 of the regulation (Article 62) |
| A provisional measure in case of the breaching the obligations in terms of the Article 62, paragraph 2, second sentence (Article 62) |
| Consistency mechanism (Article 63) |
| An opinion of the Board (Article 64) |
| Examination of the case by the Board (Article 64) |
| Issuing an opinion in terms of the Article 64, paragraph 1 and 2 of the regulation (Article 64) |
| Cooperation between the supervisory authorities, Commission and Board (Article 64) |
| Information obligation of the Chair of the Board (Article 64) |
| Restriction in adopting the decision by the supervisory authority (Article 64) |
| Activity of the supervisory activity after receiving the opinion of the Board (Article 64) |
| Action of the respective supervisory authority after rejecting the opinion of the Board (Article 64) |
| Reasons for adopting the biding decisions by the Board (Article 65) |
| Period for adopting the decisions in terms of the Article 65, paragraph 1of the regulation (Article 65) |
| Activity of the Board when the periods, settled in the Article 65, has been missed (Article 65) |
| Restrictions in adopting the decision within the period in terms of the Article 65, paragraph 2 and 3 of the regulation (Article 65) |
| Notification responsibility of the Chair of the Board (Article 65) |
| Activity of the Chair of the Board after acceptance of the final decision (Article 65) |
| Adoption of the provisional measures by the respective supervisory authority (Article 66) |
| Publication of the urgent opinion or biding decision (Article 66) |
| Request for publishing the urgent opinion (Article 66) |
| Exemptions in adopting the urgent opinion or urgent biding decision (Article 66) |
| Right of the Commission to adopt the implementing acts of the general scope (Article 67) |
| Establishment of the European Data Protection Board (Article 68) |
| Chair of the Board (Article 68) |
| Structure of the Board (Article 68) |
| Designation of the joint representative of the supervisory authorities (Article 68) |
| Participation of the Commission in the Board sessions (Article 68) |
| Scope of the competency of the European Data Protection Supervisor (Article 68) |
| Independence of the Board (Article 69) |
| Individual provision in context of the Board independence (Article 69) |
| Scope of the Board activities and responsibilities (Article 70) |
| Designation of the period by the Commission (Article 70) |
| Publication of the consultations results, opinions, best practices, made by the Board (Article 70) |
| Consultations of the Board with the respective parties (Article 70) |
| An annual report regarding the protection of natural persons with regard to processing in the Union (Article 71) |
| Scope of the annual report of the Board (Article 71) |
| Procedure in taking the decisions by the Board (Article 72) |
| Operational arrangements of the Board (Article 72) |
| Election of the Chair of the Board (Article 73) |
| Term of office of the Board (Article 73) |
| Tasks of the Chair of the Board (Article 74) |
| Allocation of the tasks to the Chair of the Board and Deputy Chair of the Board (Article 74) |
| Secretariat (Article 75) |
| Tasks of the Secretariat of the Board (Article 75) |
| Personnel of the European Data Protection Supervisor (Article 75) |
| Cooperation between the Board and European Data Protection Supervisor (Article 75) |
| Scope of the cooperation between the Board and Secretary (Article 75) |
| Responsibility of the Secretariat (Article 75) |
| Confidential discussions of the Board (Article 76) |
| Access to documents submitted to members of the Board (Article 76) |
| Competency for submitting the request to the supervisory authority (Article 77) |
| Information responsibility of the supervisory authority after receiving the complaint (Article 77) |
| Right to an effective judicial remedy against a supervisory authority (Article 78) |
| The right to a an effective judicial remedy (Article 78) |
| Local competency of the judicial authorities for proceeding in case of the personal data protection (Article 78) |
| Forwarding the opinion or decision to the respective judicial authorities (Article 78) |
| Right to an effective judicial remedy (Article 79) |
| Local competency of the Judicial authorities for submitting the proceeding against the Controller or Processor (Article 79) |
| Representation of data subjects (Article 80) |
| Extension of the rights and mandates for the not-for-profit body, organisation or association in the Member states (Article 80) |
| Existence of the identical proceedings (Article 81) |
| Suspension of the proceeding (Article 81) |
| Individual provision in context of the judicial authorities competence concerning the identical proceedings (Article 81) |
| Compensation for the material or non-material damage as a result of an infringement of this Regulation (Article 82) |
| Special provisions in context of the responsibility for the damage in terms of the Article 82, paragraph 1 of the regulation (Article 82) |
| Circumstances that are excluding the responsibility of the Controller or Processor for the damage (Article 82) |
| Joint liability in context of the personal data processing (Article 82) |
| Compensation for the damage suffered (Article 82) |
| Court proceedings for exercising the right to receive compensation (Article 82) |
| Basic rules for imposing the administrative fines (Article 83) |
| Facts and conditions that are influencing the imposition of administrative fines (Article 83) |
| Principles for imposing the maximum administrative fines (Article 83) |
| Provisions concerning the administrative fines – up to 10 000 000,- EUR (Article 83) |
| Provisions concerning the administrative fines – up to 10 000 000,- EUR (Article 83) |
| Fines for the non-compliance with an order by the supervisory authority as referred to in Article 58(2) (Article 83) |
| Some other principles for imposing the administrative fines (Article 83) |
| Competency of the supervisory authority and appropriate procedural safeguards (Article 83) |
| Application of the sanction mechanism when no administrative fines are imposed (Article 83) |
| Special provisions concerning the other sanction in case of non-compliance with the regulation (Article 84) |
| Notification obligation of the member state in terms of the Article 84, paragraph 1 of the regulation (Article 84) |
| Harmonization of the right to the protection of personal data with the legal system of the member state (Article 85) |
| Processing carried out for journalistic purposes or the purpose of academic artistic or literary expression (Article 85) |
| Notification obligation of the member state in terms of the Article 85, paragraph 2 of the regulation (Article 85) |
| Processing and public access to official documents (Article 86) |
| Processing of the national identification number (Article 87) |
| Principles of personal data processing for the purpose of the employment (Article 88) |
| Special provisions to personal data processing for the purpose of the group of undertakings (Article 88) |
| Notification obligation in terms of the Article 88, paragraph 1 of the regulation (Article 88) |
| Appropriate safeguards, in accordance with this Regulation, for the rights and freedoms of the data subject (Article 89) |
| Exemption in personal data processing for scientific or historical research purposes or statistical purposes (Article 89) |
| Exemption in personal data processing for archiving purposes in the public interest (Article 89) |
| Restrictions in the exemptions, noted in the Article 89, paragraph 2 and 3 of the regulation (Article 89) |
| Right of the supervisory authorities in terms of the Article 58, paragraph 1, points e) and f) of the regulation (Article 90) |
| Notification obligation in context of the Article 90, paragraph 1 of the regulations (Article 90) |
| Existing data protection rules of churches and religious associations unification (Article 91) |
| Supervisory authority for the personal data processing in churches and religious associations (Article 91) |
| Right of the Commission to adopt the delegated acts (Article 92) |
| Period for the delegate acts adoption (Article 92) |
| Subjects entitled to revoke the delegation of power referred to in Article 12(8) and Article 43(8) (Article 92) |
| Notification of delegated act adoption (Article 92) |
| Entering into the force of the delegated act (Article 92) |
| Cooperation between the Commission and Committee within the meaning of Regulation (EU) No 182/2011 (Article 93) |
| Reference to the Article 5 of Regulation (EU) No 182/2011 (Article 93) |
| Reference to the Article 8 of Regulation (EU) No 182/2011 (Article 93) |
| Date of the Directive 95/46/EC repeal (Article 94) |
| Special provisions to the Directive 95/46/EC references (Article 94) |
| Relationship with Directive 2002/58/EC (Article 95) |
| Relationship with previously concluded Agreements (Article 96) |
| Report on the evaluation and review of this Regulation to the European Parliament and to the Council (Article 97) |
| Obligations of the Commission in the context of the evaluation and reviewing of this regulation (Article 97) |
| Right of the Commission request information from Member States and supervisory authorities (Article 97) |
| Proceeding of the Commission during the evaluation and reviewing process (Article 97) |
| Submission of the appropriate proposals to amend this Regulation (Article 97) |
| Review of other Union legal acts on data protection (Article 98) |
| Entry into force of this regulation (Article 99) |
| Application of this regulation (Article 99) |
