Control GDPRGovernance

URI: GDPRGovernance

Package: GDPR

Description: The process or data exchange has been examined by lawyers and found to be legal under the GDPR. Used where compliance does not depend only on technical measures.

DataFlow	Represents an end to end flow of data between processes via a set of Data Steps connecting between intermediate processes.
Process	Represents a process (usually implemented by software running on a Host) that can read, update or create data, or exchange data with other processes.

CSG-GDPR-Art6-1-bcef

Processing of Data under GDPR Art 6.1b (performance of a contract), Art 6.1c (to comply with regulation), Art 6.1e (in the public interest) or Art 6.1f (legitimate interests). The Governance control means process Process has analysed by the relevant experts and documented the case for it being considered lawful under one of these provisions. Access to the data must still be logged by its storage device SHost.

CSG-GDPRDataFlowGovernance

The flow of data Data between FlowsFrom and Process has been analysed by legal experts and found to be compliant with the GDPR.

Control GDPRGovernance

Assets (2)

Control Strategies (2)