„We know our company well, we do not need to check anything."
Are you sure about that?
Article 91 GDPR
Existing data protection rules applicable to churches and religious associations
1. If, in a Member State at the time of the entry into force of this Regulation, churches and religious associations or communities apply specific rules for the protection of natural persons in connection with processing, such rules may continue to be applied, provided that they are brought into line with this Regulation.
2. Churches and religious associations that apply specific rules in accordance with paragraph 1 of this Article shall be subject to supervision by an independent supervisory body, which may be a separate body, provided that it meets the conditions set forth in Chapter VI of this Regulation.
