ODO24 Logo
ODO24 Logo
ODO24 Logo
GDPR questions and answers

GDPR: QUESTIONS AND ANSWERS

Category:
Data Processing

Where can we find information on processing operations?

ANSWER

As noted during the webinar, the lack of a precise definition leads to information being scattered across sources. Nevertheless, the following sources will help define processing operations and determine how they should be characterised:

  • GDPR (Article 4(2), Article 30(1), 35)
  • Communication of the President of the Personal Data Protection Office of 17 June 2019 on the list of types of personal data processing operations requiring a data protection impact assessment;
  • Guidelines 4/2019 on Article 25 Data protection by design and by default
  • Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is "likely to result in a high risk" for the purposes of Regulation 2016/679
  • Guidelines on the implementation of the Court of Justice of the European Union judgment in "Google Spain SL and Google Inc. v Agencia Española de Protección de Datos (AEPD) and Mario Costeja González" C-131/12.
Show all
PreviousNext

Read also:

07 June 2026

TikTok a RODO w sektorze publicznym – czego urzędy mogą dowiedzieć się z niemieckich zaleceń dla instytucji

29 May 2026

Kontrola służbowej poczty e-mail pracownika a tajemnica przedsiębiorstwa - kiedy pracodawca może legalnie przejrzeć skrzynkę?

14 May 2026

Czy pracodawca może opublikować zdjęcie pracownika? Wykorzystanie wizerunku pracownika na gruncie RODO i prawa autorskiego

Szkolenia

RODO od podstaw (8h) online

Receive a free package of 4 tutorials and 4 e-learning trainings
The controller of your data is ODO 24 sp. z o. o.
Sources of information on processing operations under the GDPR | ODO 24 | ODO 24