4 CHAPTER

Controller and processor

1 Section - General obligations

24 Article - Responsibility of the controller
25 Article - Data protection by design and by default
26 Article - Joint controllers
27 Article - Representatives of controllers or processors not established in the Union
28 Article - Processor
29 Article - Processing under the authority of the controller or processor
30 Article - Records of processing activities
31 Article - Cooperation with the supervisory authority

2 Section - Security of personal data

32 Article - Security of processing
33 Article - Notification of a personal data breach to the supervisory authority
34 Article - Communication of a personal data breach to the data subject

3 Section - Data protection impact assessment and prior consultation

35 Article - Data protection impact assessment
36 Article - Prior consultation

4 Section - Data protection officer

37 Article - Designation of the data protection officer
38 Article - Position of the data protection officer
39 Article - Tasks of the data protection officer

5 Section - Codes of conduct and certification

40 Article - Codes of conduct
41 Article - Monitoring of approved codes of conduct
42 Article - Certification
43 Article - Certification bodies