Search

Recital 77

1 Guidance on the implementation of appropriate measures and on the demonstration of compliance by the controller or the processor, especially as regards the identification of the risk related to the processing, their assessment in terms of origin, nature, likelihood and severity, and the identification of best practices to mitigate the risk, could be provided in particular by means of approved codes of conduct, approved certifications, guidelines provided by the Board or indications provided by a data protection officer. 2 The Board may also issue guidelines on processing operations that are considered to be unlikely to result in a high risk to the rights and freedoms of natural persons and indicate what measures may be sufficient in such cases to address such risk.


This recital of the General Data Protection Regulation clarifies article 24 GDPR (Responsibility of the controller) and article 32 GDPR (Security of processing).*

The reference between articles and recitals is based on the professional assessment of activeMind.legal.

Contact us!

Assistance with data protection?

Subscribe to our free newsletter! 

Secure the knowledge of our experts!

Subscribe to our free newsletter: