PRIVACY - Privacy Management > Appendix: GDPR in Details
Appendix: GDPR in Details
 
Territorial Scope
Establishment Principle in the Directive
Establishment Principle in the Regulation
Foreign Company Subject to Regulation
Controller Representative or Foreign Processor
Applicability Member State Law due to International Law
Personal Data Processing
Legal Entity Data
Common Data
Special Categories of Data
Common Data
Sensitive Categories of Data
GDPR Legal Roles
The Undertaking
The Enterprise as an Interested Subject
SMEs as data controllers
Derogations and Facilities for SMEs
Notice and Consent
Transparency
Notice:Contents
Notice:New Rules
Notice:Exceptions
Personal data collected from data subject
Personal data not obtained from the data subject
Notice:When to be Issued
Consent
Consent Lawfulness Conditions
Rights of Data Subjects
Access Right
Right to Rectification
Right to Erasure
Right to be Forgotten
Right to be Forgotten: History
Right to Restriction of Processing
Portability Right
Free Exercise of Rights
Right to Object
GDPR Documentation System
Records of Processing
Supporting Documentation
Abolition Obligation Notification
Sanction for Violation of Documentation
Prior Consultation to Supervisory Authority
Sanction for Omitted Prior Consultation
Data Protection Assessment
DPIA
Sanction for Omitted DPIA
Supervisory Authority Consultation
Technical and Organizational Measures
Security Measures
Security in General
Security Assessment
Data Breach
Security Measures against Data Breaches
Personal Data Breach
Sanction for Sensitive Data Breach
Data Transfer Abroad
1.1. Countries that offer personal data protection system, considered appropriate by the EU Commission
1.2. Countries not on the list of those with "adequate protection"
1.3. The various contractual models approved by the EU Comission
Sanctions and Damages
New Sanctions
Sanction for Sensitive Data Breaches
Sanction for Omitted Prior Consultation
Sanction for Omitted DPIA
Sanction for Consent Violations
Sanction for Rights Violations
GDPR-related Definitions
The General Data Protection Regulation (GDPR) introduces significant operational innovations in the management of personal data by private companies subject to the jurisdiction of Member States of the European Union. In this section, we analyze the most important novelties, highlighting the main business impacts.