In this video, Mandy Huth talks about data controllers and data processors under GDPR. Explore the tasks that a data controller must manage and the responsibilities of a data processor.
- [Instructor] There are two primary groups of organizations…covered under GDPR in terms of processing data,…data controllers and data processors.…Data controllers have responsibility…for control over personal data.…They are, in effect, the data owners.…They have ultimate accountability…for the safety of that data.…Some of the tasks that a data controller is responsible for…is to insure they have compliance.…They do this by processing personal data fairly.…
Those organizations must obtain data fairly…and keep it only for its identified purpose.…The data controllers must keep it safe…and they must manage any processors they may use.…Data processors are engaged by controllers…to obtain, analyze, and store data…on the controller's behalf.…You can think of them as third party vendors,…such as a managed service, or a software product.…Data processors must act exactly as they are instructed…by controllers.…
They must protect the data as well.…Processors must also obtain written permission…to use any subcontractors…in their data processing requirements.…
DISCLAIMER: Neither LinkedIn nor the instructor represents you, and they are not giving legal advice. The information conveyed through this course is not intended to give legal advice, but instead to communicate information to help viewers understand the basics of the topic presented. Certain concepts may not apply in all countries. The views (and legal interpretations) presented in this course do not necessarily represent the views of LinkedIn or Lynda.com.
- Define the objectives of GDPR relating to the personal privacy of citizens.
- Determine the responsibilities of data protection officers under GDPR.
- Identify the rights of citizens in the event of a data breach.
- Review the steps that must be taken in the event of a data breach.
- Describe the notification process in the event of a data breach.