Article 33 Notification of a personal data breach to the supervisory authority

2020 ◽  
Author(s):  
Cédric Burton
Keyword(s):  
Personal Data ◽  
Data Breach ◽  
Supervisory Authority ◽  
Definition Of ◽  
Article 5 ◽  
Data Subject

Recital 88; Article 4(12) (Definition of a personal data breach); Article 5(2)) (Accountability principle); Article 28(3)(f) (Processor); Article 32 (security of processing); Article 34 (Communication of a breach to the data subject) (see too recital 86); Article 70(1)(g)(h) (Tasks of the Board); Article 83(4)(a) (Fines for infringement of Article 33).

Article 34 Communication of a personal data breach to the data subject

2020 ◽  
Author(s):  
Cédric Burton
Keyword(s):  
Personal Data ◽  
Data Breach ◽  
Member States ◽  
Supervisory Authority ◽  
Eu Member States ◽  
Definition Of ◽  
Data Subject

Article 4(12) (Definition of a personal data breach); Article 23(1) (Restriction of communication obligation by EU Member States) (see too recital 73); Article 28(3)(f) (Processor); Article 32 (Security of processing); Article 33 (Notification of a breach to the supervisory authority) (see too recital 85); Article 70(1)(g)(h) (Tasks of the Board); Article 83(4)(a) (Fines for infringement of Article 34).

Article 32 Security of processing

2020 ◽  
Author(s):  
Cédric Burton
Keyword(s):  
Personal Data ◽  
Security Measures ◽  
Data Breach ◽  
Supervisory Authority ◽  
Definition Of ◽  
Data Subject

Recitals 75–79; recital 88; Article 4(12) (Definition of a personal data breach); Article 28(1) (Choice of processor providing sufficient guarantees) (see too recital 81); Article 28(3)(c) (Processor must be contractually bound to implement security measures); Article 33 (Personal data breach notification requirement to the supervisory authority) (see too recitals 85 and 87); Article 34 (Communication of a personal data breach to the data subject) (see too recital 86).

Article 14 Information to be provided where personal data have not been obtained from the data subject

2020 ◽  
Author(s):  
Gabriela Zanfir-Fortuna
Keyword(s):  
Personal Data ◽  
Information Communication ◽  
Data Breach ◽  
Article 5 ◽  
Right Of Access ◽  
Data Subject

Article 5(1) (Principle of fairness, lawfulness and transparency); Article 12 (Transparent information, communication and modalities for the exercise of the rights of the data subject); Article 14 (Information to be provided where personal data have not been obtained from the data subject); Article 15 (Right of access by the data subject); Article 23 (Restrictions); Article 34 (Communication of a personal data breach to the data subject).

Article 38 Position of the data protection officer

2020 ◽  
Author(s):  
Cecilia Alvarez Rigaudias ◽  
Alessandro Spina
Keyword(s):  
Impact Assessment ◽  
Data Protection ◽  
Personal Data ◽  
Data Breach ◽  
Supervisory Authority ◽  
Data Subject

Article 13(1)(b) (Information to be provided where personal data are collected from the data subject) (see too recitals 60–61); Article 14(1)(b) (Information to be provided where personal data have not been obtained from the data subject) (see too recital 61); Article 30 (Records of processing activities) (see too recital 82); Article 33 (Notification of a personal data breach to the supervisory authority) (see too recital 85); Article 35 (Data protection impact assessment) (see too recitals 90–91); Article 36 (Prior consultation) (see too recital 94); Article 37 (Designation of the Data Protection Officer) (see too recital 97); Article 39 (Tasks of the data protection officer) (see too recitals 77 and 97); Article 47 (Binding corporate rules) (see too recital 108); Article 52(1) (Independence of supervisory authorities) (see too recitals 117–118 and 120–121); Article 57 (Tasks of supervisory authorities) (see too recital 122); Article 69 (Independence of the EDPB) (see too recital 139).

Article 25 Data protection by design and by default

2020 ◽  
Author(s):  
Lee A. Bygrave
Keyword(s):  
Public Interest ◽  
Data Protection ◽  
Codes Of Conduct ◽  
Personal Data ◽  
Historical Research ◽  
Individual Decision Making ◽  
The Public ◽  
Definition Of ◽  
Article 5 ◽  
Data Subject

Article 4(5) (Definition of ‘pseudonymisation’) (see too recital 28); Article 5(2) (Accountability) (see too recital 11); Article 6(4)(e) (Compatibility); Article 22 (Automated individual decision-making, including profiling) (see too recital 71); Article 24 (Responsibility of controllers); Article 28 (Processors) (see too recital 81); Article 32 (Security of processing) (see too recital 83); Article 34(3)(a) (Communication of personal data breach to data subject) (see too recitals 87–88); Article 35 (Data protection impact assessment) (see too recital 84); Article 40 (Codes of conduct); Article 83(2)(d) and 83(4) (Fines); Article 89(1) (Safeguards relating to processing of personal data for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes).

Article 11 Processing which does not require identification

2020 ◽  
Author(s):  
Ludmila Georgieva
Keyword(s):  
Data Protection ◽  
Personal Data ◽  
Information Communication ◽  
Definition Of ◽  
Article 5 ◽  
Data Subject

Article 4(1) (Definition of ‘personal data’); Article 5 (Principles relating to processing of personal data) (see too recital 39); Article 6 (Lawfulness of processing); Article 12 (Transparent information, communication and modalities for the exercise of the rights of the data subject); Articles 15–20 (Data subject rights) (see too recital 64); Article 24 (Responsibility of the controller); Article 25 (Data protection by design and default) (see too recital 78); Article 32 (Security of processing) (see too recital 83).

Article 13 Information to be provided where personal data are collected from the data subject

2020 ◽  
Author(s):  
Gabriela Zanfir-Fortuna
Keyword(s):  
Personal Data ◽  
Information Communication ◽  
Data Breach ◽  
Article 5 ◽  
Right Of Access ◽  
Data Subject

Article 5(1) (Principle of fairness, lawfulness and transparency); Article 12 (Transparent information, communication and modalities for the exercise of the rights of the data subject); Article 14 (Information to be provided where personal data have not been obtained from the data subject); Article 15 (Right of access by the data subject); Article 23 (Restrictions); Article 34 (Communication of a personal data breach to the data subject).

Article 9 Processing of special categories of personal data

2020 ◽  
Author(s):  
Ludmila Georgieva ◽  
Christopher Kuner
Keyword(s):  
Decision Making ◽  
Data Protection ◽  
Personal Data ◽  
Genetic Data ◽  
Biometric Data ◽  
Individual Decision Making ◽  
Vital Interest ◽  
Data Portability ◽  
Definition Of ◽  
Data Subject

Article 4(1) (Definition of personal data); Article 4(2) (Definition of processing); Article 4(11) (Definition of consent); Article 4(13) (Definition of genetic data, see also recital 34); Article 4(14) (Definition of biometric data); Article 4(15) (Definition of data concerning health, see also recital 35); Article 6(4)(c) (Lawfulness of processing, compatibility test) (see too recital 46 on vital interest); Article 13(2)(c) (Information to be provided where personal data are collected from the data subject); Article 17(1)(b), (3)(c) (Right to erasure (‘right to be forgotten’)); Article 20(1)(a) (Right to data portability); Article 22(4) (Automated individual decision-making, including profiling); Article 27(2)(a) (Representatives of controllers or processors not established in the Union); Article 30(5) (Records of processing activities); Article 35(3)(b) (Data protection impact assessment) (see too recital 91); Article 37(1)(c) (Designation of the data protection officer) (see too recital 97); Article 83(5)(a) (General conditions for imposing administrative fines).

Article 4(11). Consent

2020 ◽  
Author(s):  
Lee A. Bygrave ◽  
Luca Tosoni
Keyword(s):  
Decision Making ◽  
Information Society ◽  
Personal Data ◽  
Individual Decision ◽  
Individual Decision Making ◽  
Article 9 ◽  
Data Portability ◽  
Article 5 ◽  
Data Subject

Article 5 (Principles relating to processing of personal data) (see also recitals 33, 39 and 50); Article 6(1)(a) (Lawfulness of processing on basis of consent) (see too recital 40); Article 7 (Conditions for consent) (see also recital 42); Article 8 (Conditions applicable to child’s consent in relation to information society services) (see too recital 38); Article 9(2)(a) (Processing of special categories of personal data on basis of consent) (see too recital 51); Article 13 (Information to be provided where personal data are collected from the data subject) (see too recitals 60–62); Article 14 (Information to be provided where personal data have not been obtained from the data subject); Article 17 (Right to erasure) (see too recital 65); Article 20 (Right to data portability) (see too recital 68); Article 22 (Automated individual decision-making, including profiling) (see too recital 71); Article 49(1)(a) (Transfer of personal data to third country or international organisation on basis of consent) (see too recitals 111–112).

Article 60 Cooperation between the lead supervisory authority and the other supervisory authorities concerned

2020 ◽  
Author(s):  
Luca Tosoni
Keyword(s):  
Dispute Resolution ◽  
International Cooperation ◽  
Personal Data ◽  
The Other ◽  
Mutual Assistance ◽  
Supervisory Authority ◽  
Cross Border ◽  
Joint Operations ◽  
Definition Of ◽  
Article 50

Article 4(16) (Definition of ‘main establishment’) (see too recital 36); Article 4(22) (Definition of ‘supervisory authority concerned’) (see also recital 36); Article 4(23) (Definition of ‘cross-border processing’); Article 4(24) (Definition of ‘relevant and reasoned objection’) (see too recital 124); Article 50 (International cooperation for the protection of personal data) (see too recitals 102 and 116); Article 55 (Competence of the supervisory authorities) (see too recitals 122 and 128); Article 56 (Competence of the lead supervisory authority) (see also recitals 124–128); Article 57(1)(g) (Supervisory authorities’ task to cooperate with other supervisory authorities) (see too recitals 123 and 133); Article 58 (Powers of supervisory authorities) (see too recitals 122 and 129); Article 61 (Mutual assistance) (see too recitals 123 and 133); Article 62 (Joint operations of supervisory authorities) (see too recital 134); Article 63 (Consistency mechanism) (see too recitals 13, 136 and 138); Article 64 (Opinion of the Board) (see also recitals 135–136); Article 65 (Dispute resolution by the Board) (see too recitals 136 and 143); and Article 66 (Urgency procedure) (see too recitals 137–138).

Sign in / Sign up

Export Citation Format

Share Document