European Data Protection Law and Regulation - Accountability Requirements - Documentation and cooperation with regulators
3 important questions on European Data Protection Law and Regulation - Accountability Requirements - Documentation and cooperation with regulators
What is the difference between the Directive and the GDPR with regards to documentation?
Under the directive, companies in Europe had to notify or register with their DPA their intention to process personal data. This is still the case in the UK.
What data processing records need to be kept by a controller?
- Controllers name and contact details
- Purposes of processing
- Description of the categories of data subjects and the categories of personal data
- The categories of recipients to whom the data have or will be disclosed
- Transfers to third countries (incl. Safeguards)
- Retention period for erasure/deletion
- General description of the technical and organizational security measures
When is a record of processing activities not applicable (exemptions)
For a company with fewer than 250 employees. However, this is not the case if:
- Processing is likely to result in a risk for the rights and freedoms of data subjects
- Processing is frequent and not occasional
- Processing involves special categories of data, including healthcare
The question on the page originate from the summary of the following study material:
- A unique study and practice tool
- Never study anything twice again
- Get the grades you hope for
- 100% sure, 100% understanding
Remember faster, study better. Scientifically proven.
