02 – Template Articles – EU GDPR

Shows the GDPR articles where this template may be used


Article RefTitleTemplate SectionSection Description
5.1.aPrinciples - Lawfulness, fairness and transparencyAllAll sections describes how the company shall collect, handle and store personal data to meet the data protection standards
5.1.cPrinciples – Data MinimisationData MinimizationLimit the collection of personal information to what is directly relevant and necessary to accomplish a specified purpose
5.1.dPrinciples – Data AccuracyData AccuracyCovers policies that ensure that personal data is kept accurate, complete and up to date.
5.1.ePrinciples – Storage LimitationData RetentionRecords management considerations for meeting regulatory and archival requirements
5.1.fPrinciples – Integrity and ConfidentialityIntegrity and ConfidentialityLimiting data access and maintaining consistency, accuracy and trustworthiness of data over its entire lifecycle
11.1Data PseudonymizationIntegrity and ConfidentialityLimiting data access and maintaining consistency, accuracy and trustworthiness of data over its entire lifecycle
19.1Notification of Right of AccessData TransfersCovers the management of the sharing of personal data across various jurisdictions
24.1Technical and Organizational MeasuresAllAll sections describes how the company shall collect, handle and store personal data to meet the data protection standards
24.2Data Protection PoliciesAllAll sections describes how the company shall collect, handle and store personal data to meet the data protection standards
27.1Appointment of a RepresentativeRoles and ResponsibilitiesGDPR roles include data processor, data subprocessor, data controller, DPO, supervisory authority, GDPR representative and joint controllers
30.1Records of Processing Activities by the ControllerROPAThe maintenance of the detailed descriptions of an organization's data processing practices
30.2Record of Processing Activities by the ProcessorROPAThe maintenance of the detailed descriptions of an organization's data processing practices
30.3Format of Records of Processing ActivitiesROPAThe maintenance of the detailed descriptions of an organization's data processing practices
31Cooperation with AuthoritiesSupervisory AuthoritiesIndependent public authorities that supervise the application of general data protection laws
32.2Security Risk AssessmentsScopeDefines the various functions and methods with which an organisation processes personal data
32.4Security Access MeasuresUnauthorised ProcessingEnsures that persondal data is processed by authorised persons and the penalty for default thereof
37.1Requirement for a Data Protection OfficerRoles and ResponsibilitiesGDPR roles include data processor, data subprocessor, data controller, DPO, supervisory authority, GDPR representative and joint controllers
37.6Contracting a Data Protection OfficerRoles and ResponsibilitiesGDPR roles include data processor, data subprocessor, data controller, DPO, supervisory authority, GDPR representative and joint controllers
38.1DPO Involvement in Data Protection IssuesRoles and ResponsibilitiesGDPR roles include data processor, data subprocessor, data controller, DPO, supervisory authority, GDPR representative and joint controllers
44.1International Data TransfersData TransfersCovers the management of the sharing of personal data across various jurisdictions
45.1Data Transfer on Basis of Adequacy DecisionData TransfersCovers the management of the sharing of personal data across various jurisdictions
46.1Data Transfers on Basis of Appropriate SafeguardsData TransfersCovers the management of the sharing of personal data across various jurisdictions
49.1Data Transfers on Basis of Legal ConsiderationsData TransfersCovers the management of the sharing of personal data across various jurisdictions