Home Privacy Law GDPR Article 24 GDPR (Responsibility of The Controller)
Privacy Law

Article 24 GDPR (Responsibility of The Controller)

By Editorial Staff

Article 24 of GDPR: Data controller responsibilities

Starting from Article 24 of GDPR, the law gets into the obligations of data controllers and data processors when collecting, storing or processing personal data.

Appropriate technical and organisational measures to protect data (Article 24(1) GDPR)

GDPR imposes a duty on data controllers or companies collecting personal data to ensure they implement proper safeguards to protect the data.

In the assessment of what can be a reasonable measure, from a technical and organisational perspective, companies are asked to consider the following:

  1. Nature of data processing
  2. Scope of data processing
  3. Context of data processing
  4. Purpose of data processing
  5. Risks of likelihood or severity to the person’s rights and freedoms

Furthermore, the measures adopted by companies must be reviewed and regularly updated. 

Data protection policies (Article 24(2) GDPR)

In certain cases, if it is proportionate to the nature, scope, context and purpose of data processing, appropriate technical and organisational measures will include the implementation of data protection policies and procedures by the data controller.

Code of conduct or certifications (Article 24(3) GDPR)

To demonstrate compliance with GDPR in regards to the data controller’s obligations, companies can opt to adhere to approved codes of conduct or approved certification mechanisms.

Recitals applicable to Article 24 of GDPR

Relevant Recitals: 74, 75, 76, 77

GDPR Regulation article-by-article overview

Read our comprehensive overview of the GDPR Regulation, article by article, where we summarize each of the 99 articles contained in GDPR to give you a complete understanding of its content.

Cited Legislation in Article 24 or relevant recitals

None

GDPR Text: Article 24 of GDPR and Relevant Recitals

Icon

GDPR Article 24 (Responsibility of The Controller)

1 file(s) 70.16 KB
Download

GDPR Text Source: EUR-Lex

Official GDPR Text: General Data Protection Regulation 

Official GDPR Title: REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), corrected by Corrigendum, OJL 127, 23.5.2018, p. 2 ((EU) 2016/679)

Previous articleArticle 23 GDPR (Restrictions)
Next articleArticle 25 GDPR (Data Protection By Design And By Default)
Editorial Staff
Hello Nation! I'm a lawyer by trade and an entrepreneur by spirit. I specialize in law, business, marketing, and technology (and love it!). I'm an expert SEO and content marketer where I deeply enjoy writing content in highly competitive fields. On this blog, I share my experiences, knowledge, and provide you with golden nuggets of useful information. Enjoy!

RELATED ARTICLES

Blog

Signed Under Duress (Explained: All You Need To Know)

Signed Under Duress (Explained: All You Need To Know)
Read more
Blog

Acceptance In Contract Law (All You Need To Know)

Acceptance In Contract Law (All You Need To Know)
Read more
Blog

Novation Contract (Meaning: All You Need To Know)

Novation Contract (Meaning: All You Need To Know)
Read more

Most Popular

What Is A Special Purpose Entity (All You Need To Know)

Blog
What Is A Special Purpose Entity (Explained: All You Need To Know)
Read more

What Is Corporate Raiding (Explained: All You Need To Know)

Blog
What Is Corporate Raiding (Explained: All You Need To Know)
Read more

What Are Golden Shares (Explained: All You Need To Know)

Blog
What Are Golden Shares (Explained: All You Need To Know)
Read more

What Is A Targeted Repurchase (Explained: All You Need To Know)

Blog
What Is A Targeted Repurchase (Explained: All You Need To Know)
Read more

What Is A Friendly Takeover (Explained: All You Need To Know)

Blog
What Is A Friendly Takeover (Explained: All You Need To Know)
Read more
Load more

Editor's Picks

Copyright All Rights Reserved (Explained: All You Need To Know)

Blog
Copyright All Rights Reserved (Explained: All You Need To Know)
Read more

Delaware Name Reservation (Why Should You Do It And How)

Business
Delaware Name Reservation (Why Should You Do It And How)
Read more

What Is A Biennial Statement (Explained: All You Need To Know)

Blog
What Is A Biennial Statement (Explained: All You Need To Know)
Read more

Market Risk (Definition: What It Is And All You Need To Know)

Blog
Market Risk (Definition: What It Is And All You Need To Know)
Read more

Reseller License (What Is It And Why It’s Important: Overview)

Blog
Reseller License (What Is It And Why It’s Important: Overview)
Read more
Load more
© 2022 - Incorporated.Zone
MORE STORIES
Special Purpose Entity

What Is A Special Purpose Entity (All You Need To Know)