Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC (Text with EEA relevance)

Version status: Applicable | Document consolidation status: No known changes

Published date: 21 November 2018

Comparing proposed amendment...


	Recitals
	Chapter I General provisions (arts. 1-3)
Applicable	Article 1 Subject matter and objectives
Applicable	Article 2 Scope
Applicable	Article 3 Definitions
	Chapter II General principles (arts. 4-13)
Applicable	Article 4 Principles relating to processing of personal data
Applicable	Article 5 Lawfulness of processing
Applicable	Article 6 Processing for another compatible purpose
Applicable	Article 7 Conditions for consent
Applicable	Article 8 Conditions applicable to a child's consent in relation to information society services
Applicable	Article 9 Transmissions of personal data to recipients established in the Union other than Union institutions and bodies
Applicable	Article 10 Processing of special categories of personal data
Applicable	Article 11 Processing of personal data relating to criminal convictions and offences
Applicable	Article 12 Processing which does not require identification
Applicable	Article 13 Safeguards relating to processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes
	Chapter III Richts of the data subject (arts. 14-25)
	Section 1 Transparency and modalities (art. 14)
Applicable	Article 14 Transparent information, communication and modalities for the exercise of the rights of the data subject
	Section 2 Information and access to personal data (arts. 15-17)
Applicable	Article 15 Information to be provided where personal data are collected from the data subject
Applicable	Article 16 Information to be provided where personal data have not been obtained from the data subject
Applicable	Article 17 Right of access by the data subject
	Section 3 Rectification and erasure (arts. 18-22)
Applicable	Article 18 Right to rectification
Applicable	Article 19 Right to erasure ('right to be forgotten')
Applicable	Article 20 Right to restriction of processing
Applicable	Article 21 Notification obligation regarding rectification or erasure of personal data or restriction of processing
Applicable	Article 22 Right to data portability
	Section 4 Right to object and automated individual decision-making (arts. 23-24)
Applicable	Article 23 Right to object
Applicable	Article 24 Automated individual decision-making, including profiling
	Section 5 Restrictions (art. 25)
Applicable	Article 25 Restrictions
	Chapter IV Controller and processor (arts. 26-45)
	Section 1 General obligations (arts. 26-32)
Applicable	Article 26 Responsibility of the controller
Applicable	Article 27 Data protection by design and by default
Applicable	Article 28 Joint controllers
Applicable	Article 29 Processor
Applicable	Article 30 Processing under the authority of the controller or processor
Applicable	Article 31 Records of processing activities
Applicable	Article 32 Cooperation with the European Data Protection Supervisor
	Section 2 Security of personal data (arts. 33-35)
Applicable	Article 33 Security of processing
Applicable	Article 34 Notification of a personal data breach to the European Data Protection Supervisor
Applicable	Article 35 Communication of a personal data breach to the data subject
	Section 3 Confidentiality of electronic communications (arts. 36-38)
Applicable	Article 36 Confidentiality of electronic communications
Applicable	Article 37 Protection of information transmitted to, stored in, related to, processed by and collected from users' terminal equipment
Applicable	Article 38 Directories of users
	Section 4 Data protection impact assessment and prior consultation (arts. 39-40)
Applicable	Article 39 Data protection impact assessment
Applicable	Article 40 Prior consultation
	Section 5 Information and legislative consultation (arts. 41-42)
Applicable	Article 41 Information and consultation
Applicable	Article 42 Legislative consultation
	Section 6 Data protection officer (arts. 43-45)
Applicable	Article 43 Designation of the data protection officer
Applicable	Article 44 Position of the data protection officer
Applicable	Article 45 Tasks of the data protection officer
	Chapter V Transfers of personal data to third countries or international organisations (arts. 46-51)
Applicable	Article 46 General principle for transfers
Applicable	Article 47 Transfers on the basis of an adequacy decision
Applicable	Article 48 Transfers subject to appropriate safeguards
Applicable	Article 49 Transfers or disclosures not authorised by Union law
Applicable	Article 50 Derogations for specific situations
Applicable	Article 51 International cooperation for the protection of personal data
	Chapter VI European data protection supervisor (arts. 52-60)
Applicable	Article 52 European Data Protection Supervisor
Applicable	Article 53 Appointment of the European Data Protection Supervisor
Applicable	Article 54 Regulations and general conditions governing the performance of the European Data Protection Supervisor's duties, staff and financial resources
Applicable	Article 55 Independence
Applicable	Article 56 Professional secrecy
Applicable	Article 57 Tasks
Applicable	Article 58 Powers
Applicable	Article 59 Obligation of controllers and processors to react to allegations
Applicable	Article 60 Activities report
	Chapter VII Cooperation and consistency (arts. 61-62)
Applicable	Article 61 Cooperation between the European Data Protection Supervisor and national supervisory authorities
Applicable	Article 62 Coordinated supervision by the European Data Protection Supervisor and national supervisory authorities
	Chapter VIII Remedies, liability and penalties (arts. 63-69)
Applicable	Article 63 Right to lodge a complaint with the European Data Protection Supervisor
Applicable	Article 64 Right to an effective judicial remedy
Applicable	Article 65 Right to compensation
Applicable	Article 66 Administrative fines
Applicable	Article 67 Representation of data subjects
Applicable	Article 68 Complaints by Union staff
Applicable	Article 69 Sanctions
	Chapter IX Processing of operational personal data by union bodies, offices and agencies when carrying out activities which fall within the scope of Chapter 4 or Chapter 5 of Title V of Part Three TFEU (arts. 70-95)
Applicable	Article 70 Scope of the Chapter
Applicable	Article 71 Principles relating to processing of operational personal data
Applicable	Article 72 Lawfulness of processing of operational personal data
Applicable	Article 73 Distinction between different categories of data subjects
Applicable	Article 74 Distinction between operational personal data and verification of the quality of operational personal data
Applicable	Article 75 Specific processing conditions
Applicable	Article 76 Processing of special categories of operational personal data
Applicable	Article 77 Automated individual decision-making, including profiling
Applicable	Article 78 Communication and modalities for exercising the rights of the data subject
Applicable	Article 79 Information to be made available or given to the data subject
Applicable	Article 80 Right of access by the data subject
Applicable	Article 81 Limitations to the right of access
Applicable	Article 82 Right to rectification or erasure of operational personal data and restriction of processing
Applicable	Article 83 Right of access in criminal investigations and proceedings
Applicable	Article 84 Exercise of rights by the data subject and verification by the European Data Protection Supervisor
Applicable	Article 85 Data protection by design and by default
Applicable	Article 86 Joint controllers
Applicable	Article 87 Processor
Applicable	Article 88 Logging
Applicable	Article 89 Data protection impact assessment
Applicable	Article 90 Prior consultation of the European Data Protection Supervisor
Applicable	Article 91 Security of processing of operational personal data
Applicable	Article 92 Notification of a personal data breach to the European Data Protection Supervisor
Applicable	Article 93 Communication of a personal data breach to the data subject
Applicable	Article 94 Transfer of operational personal data to third countries and international organisations
Applicable	Article 95 Secrecy of judicial inquiries and criminal proceedings
	Chapter X Implementing Acts (art. 96)
Applicable	Article 96 Committee procedure
	Chapter XI Review (art. 97-98)
Applicable	Article 97 Review clause
Applicable	Article 98 Review of Union legal acts
	Chapter XII Final provisions (arts. 99-101)
Applicable	Article 99 Repeal of Regulation (EC) No 45/2001 and of Decision No 1247/2002/EC
Applicable	Article 100 Transitional measures
Applicable	Article 101 Entry into force and application
	Done at

RELATED

Document overview

Set a date to view the document

Text comparison

Print / Export Options

Export

Report template

Alert me to changes

Bookmarks

Search within this document

Request a trial

The best way to experience Better Regulation is to try it - free and without obligation.

Set a date to view the document

Text comparison

Print / Export Options

Export

Report template

Alert me to changes

Bookmarks

Search within this document

Share

Log in

Request a trial

The best way to experience Better Regulation is to try it - free and without obligation.