Guidelines 07/2020 on the concepts of controller and processor in the GDPR

Published by European Data Protection Board

General Data Protection Regulation GPDR Controller Processor

The main aim is to clarify the meaning of the concepts and to clarify the different roles and the distribution of responsibilities between these actors.

Bookmark this resource

EDPB Document on response to the request from the European Commission for clarifications on the consistent application of the GDPR, focusing on health research

Published by European Data Protection Board English

General Data Protection Regulation GPDR EC Consultation

In its guidelines (currently in preparation and due in 2021) on the processing personal data for scientific
research purposes, the EDPB will elaborate further on these issues while also aiming to provide a more
comprehensive interpretation of the various provisions in the GDPR that are relevant for the processing of personal data for scientific research purposes.

Bookmark this resource

Assessment of the EU Member States’ rules on health data in the light of GDPR

Published by European Union

General Data Protection Regulation GPDR

The results of this study allow for a detailed assessment of possible elements at Member States/EU level that might affect the movement of health data across borders. It also identifies practices that could facilitate this exchange of data, as well as possible policy options for strategies in this area

Bookmark this resource

Guidelines 04/2021 on codes of conduct as tools for transfers

Published by European Data Protection Board English

GPDR International Transfers of Data General Data Protection Regulation

The aim of these guidelines is to specify the application of Article 40-3 of the GDPR relating to codes of conduct as appropriate safeguards for transfers of personal data to third countries in accordance with Article 46-2-e) of the GDPR.

View this resource Bookmark this resource

Guidelines 05/2021 on the Interplay between the application of Article 3 and the provisions on international transfers as per Chapter V of the GDPR

Published by European Data Protection Board English

International Transfers of Data GPDR General Data Protection Regulation

Aims at clarifying this interplay between Article 3 and the provisions of the GDPR on international transfers in Chapter V in order to assist controllers and processors in the EU in identifying whether a processing constitutes a transfer to a third country or to an international organisation and, as a result, whether they have to comply with the provisions of Chapter V of the
GDPR.

Bookmark this resource

Guidelines 01/2021 on Examples regarding Personal Data Breach Notification

Published by European Data Protection Board English

General Data Protection Regulation Data Breach GPDR Security

This document is intended to complement the Guidelines WP 250 and it reflects the common experiences
of the SAs of the EEA since the GDPR became applicable. Its aim is to help data controllers in deciding how
to handle data breaches and what factors to consider during risk assessment.

View this resource Bookmark this resource

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience. See our Cookie Policy

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
Bookmark Cookie	12 months	This cookie saves your bookmarked resources to your local browser for future use.
Cookie Policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Analytics

IMT Feedback

Did the IMT help you in finding the resource you needed?