The rights and freedoms protected under EU data protection law apply to individuals whose personal data are processed. Obligations and liabilities are imposed on the person or entity that processes the individuals’ personal data. The extent of such obligations will vary depending on whether the body is considered a controller or a processor.
Identifying Controllers and Processors Pursuant to the General Data Protection Regulation
Out of print: