Data controllers and data processors dp guidance. Practical implications for data controllers and processors. GDPR vs. Data Processors. Joint controllers and their obligations. GDPR: the accountability principle. Status: Modified This is a modified concept.
The concept of ‘accountability’ has long underpinned existing data protection requirements. For the first time, however, under the GDPR ‘accountability’ is enshrined as an explicit and free-standing data protection principle. What is the accountability principle? The current EU Data Protection Directive does not explicitly set out an ‘accountability’ principle. The accountability principle. The GDPR for data controllers and processors. An overview of a controller’s obligations. Who are controllers and processors? Key data control roles. UK: ICO GDPR guidance - Contracts and liabilities between controllers and processors - Privacy Matters. On 1 August we reported on the launch of the International Regulatory Strategy Group’s “Article 28 GDPR ready contractual terms” for use between controllers and processors.
The ICO has now launched its draft guidance on this subject. The purpose of the ICO guidance is to explain, in an accessible fashion, the core requirements that all contracts will need to have in place by 25 May 2018. The guidance consists of the relevant provisions of the Regulation, together with a commentary setting out the rationale for these and how they apply in practice. The guidance does not set out to address every issue that will arise in drafting GDPR ready provisions in a contract. Nonetheless, having the ICO’s position set out in one simple explanatory document, with a checklist, will undoubtedly prove useful to those negotiating commercial contracts.
Data Processors.