EU GDPR
Contact Us

Log in

Implement & Learn

Implementation Products

Conformio
ISO 27001 Compliance Software
Built by top industry experts to automate your compliance and lower overhead.
Learn more

EU GDPR Documentation Toolkits
All Policies, Procedures, and Records
Our toolkits supply you with all of the documents required for ISO certification.
View all

Learning Products

EU GDPR Training
Accredited Online Training by Top Experts
Our course and webinar library will help you gain the knowledge that you need for your certification.
View All
Resources
Resources

By Type

Articles

Webinars

Courses

White Papers

Templates & Tools

View All

Where to Start

ISO 27001

NIS 2

ISO 9001

EU GDPR

ISO 14001

EU MDR

ISO 45001

ISO 13485

ISO 17025

IATF 16949

ISO 22301

AS9100

ISO 20000

ISO in General

NewAI Tool
Experta: AI-Powered Knowledge Base

Try now

Other

Live Consultations

Consultant Directory

Community
- Resources
For Consultants
About Us

EU GDPR Expert

Tudor Galos

Lead EU GDPR Expert
About Advisera
Contact Us

Get Started

Home
Resources
GDPR
Controller and Processor

Full text of EU GDPR (General Data Protection Regulation)

GDPR Table of Contents

Useful GDPR links

Chapter 1 (Art. 1 – 4) General provisions
Chapter 2 (Art. 5 – 11) Principles
Chapter 3 (Art. 12 – 23) Rights of the data subject
Chapter 4 (Art. 24 – 43) Controller and Processor
Chapter 5 (Art. 44 – 50) Transfers of personal data to third countries or international organisations
Chapter 6 (Art. 51 – 59) Independent supervisory authorities
- Section 1 (Art. 51 – 54) Independent status
- Section 2 (Art. 55 – 59) Competence, tasks and powers
Chapter 7 (Art. 60 – 76) Cooperation and consistency
Chapter 8 (Art. 77 – 84) Remedies, liability and penalties
Chapter 9 (Art. 85 – 91) Provisions relating to specific processing situations
Chapter 10 (Art. 92 – 93) Delegated acts and implementing acts
Chapter 11 (Art. 94 – 99) Final provisions

Download GDPR final text in PDF

Source EUR-Lex: https://eur-lex.europa.eu/

Chapter 4

Chapter 4 – Controller and Processor

Section 1 – General obligations

Article 24– Responsibility of the controller

Article 25– Data protection by design and by default

Article 26– Joint controllers

Article 27– Representatives of controllers or processors not established in the Union

Article 28– Processor

Article 29– Processing under the authority of the controller or processor

Article 30– Records of processing activities

Article 31– Cooperation with the supervisory authority

Section 2 – Security of personal data

Article 32– Security of processing

Article 33– Notification of a personal data breach to the supervisory authority

Article 34– Communication of a personal data breach to the data subject

Section 3 – Data protection impact assessment and prior consultation

Article 35– Data protection impact assessment

Article 36– Prior consultation

Section 4 – Data protection officer

Article 37– Designation of the data protection officer

Article 38– Position of the data protection officer

Article 39– Tasks of the data protection officer

Section 5 – Codes of conduct and certification

Article 40– Codes of conduct

Article 41– Monitoring of approved codes of conduct

Article 42– Certification

Article 43– Certification bodies

Contents of GDPR Section 1 – General obligations

EU GDPR Documentation Toolkit

Step-by-step GDPR compliance for smaller companies

Products

Conformio

Toolkits

Training
Resources

Articles

Webinars

Courses

Free Downloads

Tools

Live Consultations

Consultant Directory

Experta
Standards & Regulations

ISO 27001

ISO 9001

ISO 14001

ISO 45001

ISO 17025

ISO 22301

ISO 20000

NIS 2

EU GDPR

EU MDR

ISO 13485

IATF 16949

AS9100

ISO in General
Advisera

About Us

For Consultants

Careers

Contact Sales

Terms of Use
Help

Help Center

Contact Support

Partnerships

Copyright ©2024 Advisera Expert Solutions Ltd