{"title":"GDPR下的联合控制人协议","authors":"Valentina Colcelli","doi":"10.25234/ECLIC/9043","DOIUrl":null,"url":null,"abstract":"The GDPR obliges organisations to keep watch for potential instances of joint controllership of personal data. Where those instances arise, organisations must enter into suitable “arrangements” that apportion data protection compliance responsibilities between joint data controllers. The controller means the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data. But, f.i. in the case of the case of a Biobank, more than one public bodies are the controllers of personal data, and their processing takes place in an intra-group context. The paper will analyse elements established by art. 26 GDPR for Joint Controller Agreement for managing personal data under GDPR, the respective roles and relationships of the joint controllers vis-a-vis the data subjects, as well as responsibility and liability of controllers and processors.","PeriodicalId":246552,"journal":{"name":"EU AND MEMBER STATES – LEGAL AND ECONOMIC ISSUES","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"JOINT CONTROLLER AGREEMENT UNDER GDPR\",\"authors\":\"Valentina Colcelli\",\"doi\":\"10.25234/ECLIC/9043\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The GDPR obliges organisations to keep watch for potential instances of joint controllership of personal data. Where those instances arise, organisations must enter into suitable “arrangements” that apportion data protection compliance responsibilities between joint data controllers. The controller means the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data. But, f.i. in the case of the case of a Biobank, more than one public bodies are the controllers of personal data, and their processing takes place in an intra-group context. The paper will analyse elements established by art. 26 GDPR for Joint Controller Agreement for managing personal data under GDPR, the respective roles and relationships of the joint controllers vis-a-vis the data subjects, as well as responsibility and liability of controllers and processors.\",\"PeriodicalId\":246552,\"journal\":{\"name\":\"EU AND MEMBER STATES – LEGAL AND ECONOMIC ISSUES\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"EU AND MEMBER STATES – LEGAL AND ECONOMIC ISSUES\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.25234/ECLIC/9043\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"EU AND MEMBER STATES – LEGAL AND ECONOMIC ISSUES","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.25234/ECLIC/9043","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
The GDPR obliges organisations to keep watch for potential instances of joint controllership of personal data. Where those instances arise, organisations must enter into suitable “arrangements” that apportion data protection compliance responsibilities between joint data controllers. The controller means the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data. But, f.i. in the case of the case of a Biobank, more than one public bodies are the controllers of personal data, and their processing takes place in an intra-group context. The paper will analyse elements established by art. 26 GDPR for Joint Controller Agreement for managing personal data under GDPR, the respective roles and relationships of the joint controllers vis-a-vis the data subjects, as well as responsibility and liability of controllers and processors.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
