Art. 45 When there is a violation of data subject’s rights in the scope of consumer relations
Art. 45 When there is a violation of data subject’s rights in the scope of consumer relations, the rules of liability provided in the pertinent legislation shall apply.
Art. 44. Processing of personal data shall be deemed irregular when it does not obey the legislation
Art. 44 Processing of personal data shall be deemed irregular when it does not obey the legislation or when it does not provide the security that its data subject can …
Art. 43 Processing agents shall not be held liable only when they prove that
Art. 43 Processing agents shall not be held liable only when they prove that: I – they did not carry out the personal data processing that is attributed to them; …
Art. 42 The controller or the processor that, as a result of carrying out their activity of processing personal data
Art. 42 The controller or the processor that, as a result of carrying out their activity of processing personal data, cause material, moral, individual or collective damage to others, in …
Art. 41 The controller shall appoint a data protection officer to be in charge of processing personal data
Art. 41 The controller shall appoint a data protection officer to be in charge of processing personal data. §1 The identity and contact information of the data protection officer shall …
Art. 40 The national authority may provide standards of interoperability for purposes of portability
Art. 40 The national authority may provide standards of interoperability for purposes of portability, free access to data and security, as well as standards for periods in which records on …
Art. 39 The processor shall carry out the processing according to the instructions provided by the controller
Art. 39 The processor shall carry out the processing according to the instructions provided by the controller, which shall verify the obedience of her/his own instructions and of the rules …
Art. 38 The national authority may determine that the controller must prepare a data protection impact assessment
Art. 38 The national authority may determine that the controller must prepare a data protection impact assessment, which shall include personal data, sensitive data, and refer to its data processing …
Art. 37 The controller and the processor shall keep records of personal data processing operations carried out by them
Art. 37 The controller and the processor shall keep records of personal data processing operations carried out by them, especially when based on legitimate interest.hanges to guarantees presented as sufficient …