Child outside the EU


Alias, roles and other appearances in the regulations

- Accredited controller or processor in third country - Child - Complainant - Controller not established in the EU - Controller that is not subject to this Regulation - Data subject - Holder of parental responsibly over the child - Natural person - Person who has suffered material or non-material damage as a result of an infringement of this Regulation - Persons having a legitimate interest - Recipient - Third party -

Export regulations to pdf


Obligations

Regulation name
Designating the representative of the controller or processor (In role Controller not established in the EU)
Defining the delegation scope of the controller or processor (In role Controller not established in the EU)


Indirect obligations

Regulation name
Additional information claims from the controller (In role Data subject)


Rights

Regulation name
The right to withdraw his or her consent at any time (In role Data subject)
Right of the data subject to obtain a confirmation of the personal data processing from the controller (In role Data subject)
Right to be informed of appropriate safeguards pursuant to Article 46 relating to the transfer (In role Data subject)
Right to rectification (In role Data subject)
Reason for eligibility of the data subject to exercise the right to be forgotten (In role Data subject)
Restraining the personal data processing (In role Data subject)
Right of the data subject to personal data portability (In role Data subject)
Portability of the personal data from one controller to another controller (In role Data subject)
Right of the data subject to object the processing of personal data (In role Data subject)
Right of the data subject to object the personal data processing related to the marketing purposes (In role Data subject)
Application of the right to object using the automated services (In role Data subject)
Right to object the personal data processing for the purposes of the scientific, historical or statistical reasons (In role Data subject)
Right not to be subject to a decision based solely on the automated processing (In role Data subject)
Responsibilities of the controller relating to the personal data processing (In role Data subject)
Implementation of an appropriate data protection policies by the controller (In role Data subject)
Implementation of the appropriate technical and organisational measures (In role Data subject)
Processing of the personal data “by default” (In role Data subject)
Exercising the rights of the data subject against each of the controllers (In role Data subject)
Designation of the identical scope of the responsibilities for the other processor (In role Data subject)
Contacting the Data protection officer (In role Data subject)
Implementation of the codes of conduct by those subjects, which are outside the scope of this regulation (In role Controller that is not subject to this Regulation)
The competency for submitting the request to the supervisory authority (In role Data subject)
Right to an effective judicial remedy against a supervisory authority (In role Natural person)
The right to an effective judicial remedy (In role Data subject)
Right to an effective judicial remedy (In role Data subject)
Representation of data subjects (In role Data subject)
Compensation for the material or non-material damage as a result of an infringement of this Regulation (In role Person who has suffered material or non-material damage as a result of an infringement of this Regulation)


Indirect rights

Regulation name
Principle of lawfulness, fairness and transparency (In role Data subject)
Purpose limitation principle (In role Data subject)
Data minimization principle (In role Data subject)
Principle of accuracy (In role Data subject)
Storage limitation principle (In role Data subject)
Principle of integrity and confidentiality (In role Data subject)
Principle of accountability (In role Data subject)
Obligation to demonstrate the consent for processing the personal data (In role Data subject)
Prohibition of processing the special categories of personal data (In role Data subject)
Reasons for derogating the exercise of the Articles 15 – 20 (In role Data subject)
Measures of the controller in terms of providing the information to data subjects (In role Child) (In role Data subject)
Facilitating the data subject rights (In role Data subject)
Providing the information on action taken on a request under Articles 15 to 22 to the data subject (In role Data subject)
Obligations of the controller in case when the data subject request is unadopted (In role Data subject)
Information provided to the data subject when personal data has been acquired from a data subject (In role Data subject)
Additional information provided to the data subject when personal data has been acquired from a data subject (In role Data subject)
Information provided to the data subject when controller intends to further process the personal data for a purpose other than that for which the personal data were collected (In role Data subject)
Information provided where personal data have not been obtained from the data subject (In role Data subject)
Some additional information provided where personal data have not been obtained from the data subject (In role Data subject)
Principles of providing the information in terms of the Article 14, paragraph 1 and 2 of the regulation (In role Data subject)
Providing the information where the controller intends to process the personal data for a purpose other than that for which the personal data were obtained (In role Data subject)
Obligation to provide a copy of the personal data which are being processed (In role Data subject)
Obligations of the controller after the right to be forgotten has been applied (In role Data subject)
Information duty of the controller in context of the personal data processing limitation (In role Data subject)
Information obligation of the controller towards the recipients (In role Data subject) (In role Recipient)
Prohibition of the personal data processing after the Article 21, paragraph 2 has been applied (In role Data subject)
Obligation of the controller to inform the data subject about the to object (In role Data subject)
Proceedings of the controller in case of the Article 22, paragraph 2, points a) – c) application (In role Data subject)
Respective roles and relationships of the joint controllers vis-à-vis the data subjects (In role Data subject)
Guaranties of the processor for implementing the adequate protective measurements (In role Data subject)
Implementation of the appropriate technical and organisational measures (In role Data subject)
Communication the personal data breach to the data subject (In role Data subject)
Personal data processing that require the DPIA – general provision (In role Data subject)
Situation where the DPIA might be necessary (In role Data subject)
Professional secrecy commitment of the supervisory authority members and employees (In role Data subject)
The free – of -charge principle of performing the supervisory authority tasks (In role Data subject)
The notification obligation of the lead supervisory authority in case of the submitted appeal (In role Complainant)
The notification obligation of the lead supervisory authority in case of the rejection of the submitted appeal (In role Complainant)
The proceeding of the lead supervisory authority and other supervisory authorities in case of the partial rejection of the submitted appeal (In role Complainant)
Information duty of the supervisory authority after the receiving of complaint (In role Complainant)
Joint liability in context of the personal data processing (In role Data subject)
Appropriate safeguards related to the rights and freedoms of the data subject (In role Data subject)


Sanctions

Regulation name
Provisions concerning the administrative fines – up to 10 000 000,- EUR (In role Data subject)


Definitions

Regulation name
Territorial scope for the non-EU subjects (In role Controller not established in the EU)
Territorial scope for the place under the law of the Member State (In role Controller not established in the EU)
Personal data (In role Data subject)
Recipient (In role Recipient)
Third party (In role Third party)
Consent of a data subject (In role Data subject)
Performance of a contract (In role Data subject)
To protect the vital interests of the data subject or of another natural person (In role Data subject)
Purposes of the legitimate interests pursued by the controller or by a third party (In role Child) (In role Data subject) (In role Third party)
Transparency of the consent for personal data processing (In role Data subject)
Restrictions in terms of the Article 8, paragraph 1 (In role Child)
Exclusions from the prohibition of processing the special categories of personal data (In role Data subject) (In role Natural person)
Providing the information in terms of Articles 13 and 14 (In role Data subject)
Exemptions from application the obligation of the controller to provide information in terms of the Article 14, paragraphs 1 – 4 (In role Data subject)
Limitation of the negative implications in context of the other subjects' rights (In role Data subject)
Exemptions from the application of Article 17, paragraph 1 and 2 (In role Data subject)
Processing the personal data after the right to restriction of processing has been applied (In role Data subject) (In role Natural person)
Limitation of the right to obtain the personal data (In role Data subject)
Restrictions in application of the Article 22, paragraph 1 (In role Data subject)
Decisions according to the Article 22, paragraph 2 (In role Data subject)
Limitation of the obligation laid down in the Article 27, paragraph 1 (In role Controller not established in the EU)
Legal instruments of the remedies against the controller or processor (In role Controller not established in the EU)
Minimal scope of the contract essentials between the Controller and Processor (In role Data subject)
Assessing the appropriate level of the security account (In role Data subject)
Notification method in context of the Article 34, paragraph 1 of the regulation (In role Data subject)
Demonstrating the existence of an appropriate safeguards, provided by the controllers or processors that are not subject to this Regulation pursuant to Article 3 (In role Controller that is not subject to this Regulation)
Accreditation conditions in relation to the certification subjects (In role Data subject)
Possibilities of setting the appropriate safeguards up (In role Data subject)
Priority forms and approaches of the appropriate safeguards based on the Article 46, paragraph 1 (In role Recipient)
Minimal essential content of the binding corporate rules (In role Data subject)
Conditions for the personal data transfer in case of an appropriate safeguards decision absence (In role Data subject) (In role Natural person)
Specifications to the personal data transfer in context of the Article 49, paragraph 1 (In role Persons having a legitimate interest) (In role Recipient)
Proceedings in case of the urgent situations (In role Data subject)
Access to documents of the Board (In role Third party)
The local competency of the judicial authorities for submitting the proceeding against the controller or processor (In role Data subject)