GDPR

Privacy Management Tool / GDPR
1
General provisions
2
Subject-matter and objectives

General provisions
3
Material scope

General provisions
4
Territorial scope

General provisions
5
Definitions

General provisions
6
Principles
7
Principles relating to processing of personal data

Principles
8
Lawfulness of processing

Principles
9
Conditions for consent

Principles
10
Conditions applicable to child's consent in relation to information society services

Principles
11
Processing of special categories of personal data

Principles
12
Processing of personal data relating to criminal convictions and offences

Principles
13
Processing which does not require identification

Principles
14
Rights of the data subject
15
Transparent information, communication and modalities for the exercise of the rights of the data subject

Rights of the data subject
16
Information to be provided where personal data are collected from the data subject

Rights of the data subject
17
Information to be provided where personal data have not been obtained from the data subject

Rights of the data subject
18
Right of access by the data subject

Rights of the data subject
19
Right to rectification

Rights of the data subject
20
Right to erasure (‘right to be forgotten’)

Rights of the data subject
21
Right to restriction of processing

Rights of the data subject
22
Notification obligation regarding rectification or erasure of personal data or restriction of processing

Rights of the data subject
23
Right to data portability

Rights of the data subject
24
Right to object

Rights of the data subject
25
Automated individual decision-making, including profiling

Rights of the data subject
26
Restrictions

Rights of the data subject
27
Controller and processor
28
Responsibility of the controller

Controller and processor
29
Data protection by design and by default

Controller and processor
30
Joint controllers

Controller and processor
31
Representatives of controllers or processors not established in the Union

Controller and processor
32
Processor

Controller and processor
33
Processing under the authority of the controller or processor

Controller and processor
34
Records of processing activities

Controller and processor
35
Cooperation with the supervisory authority

Controller and processor
36
Security of processing

Controller and processor
37
Notification of a personal data breach to the supervisory authority

Controller and processor
38
Communication of a personal data breach to the data subject

Controller and processor
39
Data protection impact assessment

Controller and processor
40
Prior consultation

Controller and processor
41
Designation of the data protection officer

Controller and processor
42
Position of the data protection officer

Controller and processor
43
Tasks of the data protection officer

Controller and processor
44
Codes of conduct

Controller and processor
45
Monitoring of approved codes of conduct

Controller and processor
46
Certification

Controller and processor
47
Certification bodies

Controller and processor
48
Transfers of personal data to third countries or international organisations
49
General principle for transfers

Transfers of personal data to third countries or international organisations
50
Transfers on the basis of an adequacy decision

Transfers of personal data to third countries or international organisations
51
Transfers subject to appropriate safeguards

Transfers of personal data to third countries or international organisations
52
Binding corporate rules

Transfers of personal data to third countries or international organisations
53
Transfers or disclosures not authorised by Union law

Transfers of personal data to third countries or international organisations
54
Derogations for specific situations

Transfers of personal data to third countries or international organisations
55
International cooperation for the protection of personal data

Transfers of personal data to third countries or international organisations
56
Independent supervisory authorities
57
Supervisory authority

Independent supervisory authorities
58
Independence

Independent supervisory authorities
59
General conditions for the members of the supervisory authority

Independent supervisory authorities
60
Rules on the establishment of the supervisory authority

Independent supervisory authorities
61
Competence

Independent supervisory authorities
62
Competence of the lead supervisory authority

Independent supervisory authorities
63
Tasks

Independent supervisory authorities
64
Powers

Independent supervisory authorities
65
Activity reports

Independent supervisory authorities
66
Cooperation and consistency
67
Cooperation between the lead supervisory authority and the other supervisory authorities concerned

Cooperation and consistency
68
Mutual assistance

Cooperation and consistency
69
Joint operations of supervisory authorities

Cooperation and consistency
70
Consistency mechanism

Cooperation and consistency
71
Opinion of the Board

Cooperation and consistency
72
Dispute resolution by the Board

Cooperation and consistency
73
Urgency procedure

Cooperation and consistency
74
Exchange of information

Cooperation and consistency
75
European Data Protection Board

Cooperation and consistency
76
Independence

Cooperation and consistency
77
Tasks of the Board

Cooperation and consistency
78
Reports

Cooperation and consistency
79
Procedure

Cooperation and consistency
80
Chair

Cooperation and consistency
81
Tasks of the Chair

Cooperation and consistency
82
Secretariat

Cooperation and consistency
83
Confidentiality

Cooperation and consistency
84
Remedies, liability and penalties
85
Right to lodge a complaint with a supervisory authority

Remedies, liability and penalties
86
Right to an effective judicial remedy against a supervisory authority

Remedies, liability and penalties
87
Right to an effective judicial remedy against a controller or processor

Remedies, liability and penalties
88
Representation of data subjects

Remedies, liability and penalties
89
Suspension of proceedings

Remedies, liability and penalties
90
Right to compensation and liability

Remedies, liability and penalties
91
General conditions for imposing administrative fines

Remedies, liability and penalties
92
Penalties

Remedies, liability and penalties
93
Provisions relating to specific processing situations
94
Processing and freedom of expression and information

Provisions relating to specific processing situations
95
Processing and public access to official documents

Provisions relating to specific processing situations
96
Processing of the national identification number

Provisions relating to specific processing situations
97
Processing in the context of employment

Provisions relating to specific processing situations
98
Safeguards and derogations relating to processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes

Provisions relating to specific processing situations
99
Obligations of secrecy

Provisions relating to specific processing situations
100
Existing data protection rules of churches and religious associations

Provisions relating to specific processing situations
101
Delegated acts and implementing acts
102
Exercise of the delegation

Delegated acts and implementing acts
103
Committee procedure

Delegated acts and implementing acts
104
Final provisions
105
Repeal of Directive 95/46/EC

Final provisions
106
Relationship with Directive 2002/58/EC

Final provisions
107
Relationship with previously concluded Agreements

Final provisions
108
Commission reports

Final provisions
109
Review of other Union legal acts on data protection

Final provisions
110
Entry into force and application

Final provisions