| Name of regulation | ||
|---|---|---|
| Competency of the supervisory authority in context of the notification obligation of the controller | ||
| Citation | ||
| If the controller has not already communicated the personal data breach to the data subject, the supervisory authority, having considered the likelihood of the personal data breach resulting in a high risk, may require it to do so or may decide that any of the conditions referred to in paragraph 3 are met. | ||
| Legislative localisation | Chapter IV, Section 2, Article 34, Paragraph 4 | |
| Regulation subject-matter |
Communication of a personal data breach to the data subject (Article 34, Section 2, Chapter IV) | |
| Regulation type |
Right
Indirect obligation |
|
| Regulation class | Right | |
| Subjects of regulation | ||
| Right | Supervisory authority |
|
| Indirect obligation | Controller |
|
| Tree of knowledge link | https://knowww.eu/nodes/5a0595ea4b5b5f00019038ba | |