Take the
ISO 27001
course exam and get the
EU GDPR
exam
for free
LIMITED-TIME OFFER – ENDS
SEPTEMBER 28, 2023
CHOOSE YOUR EXAM BUNDLE
Standards
Advisera Home
ISO 27001
ISO 20000
ISO 9001
EU MDR
ISO 13485
EU GDPR
ISO 14001
IATF 16949
ISO 45001
AS9100
ISO 17025
ISO 22301
Contact Us
Log in
Conformio
Training
Community
Partner Panel
Experta
Implement & Learn
Implementation Products
Conformio
ISO 27001 Compliance Software
Built by top industry experts to automate your compliance and lower overhead.
Learn more
Documentation Toolkits
All Policies, Procedures, and Records
Our toolkits supply you with all of the documents required for ISO certification.
View all
Learning Products
Training
Accredited Online Training by Top Experts
Our course and webinar library will help you gain the knowledge that you need for your certification.
View All
Conformio
Documentation Toolkits
Training
Resources
Resources
By Type
Articles
Webinars
Courses
White Papers
Templates & Tools
View All
By Standard
ISO 27001
ISO 20000
ISO 9001
EU MDR
ISO 13485
EU GDPR
ISO 14001
IATF 16949
ISO 45001
AS9100
ISO 17025
ISO 22301
ISO in General
View all
Other
Live Consultations
Consultant Directory
Community
Resources
For Consultants
About Us
Our Team
Leading Experts
Experienced auditors, trainers, and consultants ready to assist you.
About Advisera
Contact Us
Get Started
Home
Resources
GDPR
Controller and Processor
Full text of EU GDPR
(General Data Protection Regulation)
EU GDPR
Chapter 4
Chapter 4 – Controller and Processor
Section 1 –
General obligations
Article 24
–
Responsibility of the controller
Article 25
–
Data protection by design and by default
Article 26
–
Joint controllers
Article 27
–
Representatives of controllers or processors not established in the Union
Article 28
–
Processor
Article 29
–
Processing under the authority of the controller or processor
Article 30
–
Records of processing activities
Article 31
–
Cooperation with the supervisory authority
Section 2 –
Security of personal data
Article 32
–
Security of processing
Article 33
–
Notification of a personal data breach to the supervisory authority
Article 34
–
Communication of a personal data breach to the data subject
Section 3 –
Data protection impact assessment and prior consultation
Article 35
–
Data protection impact assessment
Article 36
–
Prior consultation
Section 4 –
Data protection officer
Article 37
–
Designation of the data protection officer
Article 38
–
Position of the data protection officer
Article 39
–
Tasks of the data protection officer
Section 5 –
Codes of conduct and certification
Article 40
–
Codes of conduct
Article 41
–
Monitoring of approved codes of conduct
Article 42
–
Certification
Article 43
–
Certification bodies
Contents of GDPR
Section 1 – General obligations
EU GDPR Documentation Toolkit
Step-by-step GDPR compliance for smaller companies
Find out more