(87) It should be ascertained whether all appropriate technological protection and organisational measures have been implemented to establish immediately whether a personal data breach has taken place and to inform promptly the supervisory authority and the data subject. The fact that the notification was made without undue delay should be established taking into account in particular the nature and gravity of the personal data breach and its consequences and adverse effects for the data subject. Such notification may result in an intervention of the supervisory authority in accordance with its tasks and powers laid down in this Regulation.
Themen
- GDPR
- Recitals
- Chapter I – General provisions
- Chapter II – Principles
- Chapter III – Rights of the data subject
- Chapter IV – Controller and processor
- Chapter V – Transfers of personal data to third countries or international organisations
- Chapter VI – Independent supervisory authorities
- Chapter VII – Cooperation and consistency
- Chapter VIII – Remedies, liability and penalties
- Chapter X – Delegated acts and implementing acts
- Chapter XI – Final provisions
Betreiberangaben
- GDPR
- Recitals
- Chapter I – General provisions
- Chapter II – Principles
- Chapter III – Rights of the data subject
- Chapter IV – Controller and processor
- Chapter V – Transfers of personal data to third countries or international organisations
- Chapter VI – Independent supervisory authorities
- Chapter VII – Cooperation and consistency
- Chapter VIII – Remedies, liability and penalties
- Chapter X – Delegated acts and implementing acts
- Chapter XI – Final provisions