Gaois

Search direction

Search mode

Filter results

Collections

65 results in 18 documents

  1. #706731

    I gcásanna den sórt sin, níor cheart measúnú tionchair ar chosaint sonraí a bheith éigeantach.

    In such cases, a data protection impact assessment should not be mandatory.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  2. #707407

    Measúnú tionchair ar chosaint sonraí agus réamhchomhairliúchán

    Data protection impact assessment and prior consultation

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  3. #707409

    Measúnú tionchair ar chosaint sonraí

    Data protection impact assessment

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  4. #707443

    an measúnú tionchair ar chosaint sonraí dá bhforáiltear in Airteagal 35; agus

    the data protection impact assessment provided for in Article 35; and

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  5. #1722100

    Measúnú tionchair ar chosaint sonraí agus réamhchomhairliúchán

    Data protection impact assessment and prior consultation

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  6. #1722102

    Measúnú tionchair ar chosaint sonraí

    Data protection impact assessment

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  7. #1722134

    an measúnú tionchair ar chosaint sonraí dá bhforáiltear in Airteagal 39; agus

    the data protection impact assessment provided for in Article 39; and

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  8. #1973421

    Measúnú Tionchair ar Chosaint Sonraí

    Data Protection Impact Assessment

    Commission Implementing Decision (EU) 2021/858 of 27 May 2021 amending Implementing Decision (EU) 2017/253 as regards alerts triggered by serious cross-border threats to health and for the contact tracing of passengers identified through Passenger Locator Forms (Text with EEA relevance)

  9. #2246436

    Measúnú Tionchair ar Chosaint Sonraí

    Data Protection Impact Assessment

    Commission Implementing Decision (EU) 2022/483 of 21 March 2022 amending Implementing Decision (EU) 2021/1073 laying down technical specifications and rules for the implementation of the trust framework for the EU Digital COVID Certificate established by Regulation (EU) 2021/953 of the European Parliament and of the Council (Text with EEA relevance)

  10. #2465829

    comhairle a thabhairt nuair a iarrtar sin maidir leis an measúnú tionchair ar chosaint sonraí de bhun Airteagal 89 de Rialachán (AE) 2018/1725 agus faireachán a dhéanamh ar fheidhmíocht an measúnaithe tionchair ar chosaint sonraí;

    providing advice where requested as regards the data protection impact assessment pursuant to Article 89 of Regulation (EU) 2018/1725 and monitoring the performance of the data protection impact assessment;

    Regulation (EU) 2022/991 of the European Parliament and of the Council of 8 June 2022 amending Regulation (EU) 2016/794, as regards Europol’s cooperation with private parties, the processing of personal data by Europol in support of criminal investigations, and Europol’s role in research and innovation

  11. #3226711

    Measúnú tionchair ar chosaint sonraí

    DATA PROTECTION IMPACT ASSESSMENT

    Commission Implementing Regulation (EU) 2024/607 of 15 February 2024 on the practical and operational arrangements for the functioning of the information sharing system pursuant to Regulation (EU) 2022/2065 of the European Parliament and of the Council (Digital Services Act)

  12. #1722183

    comhairle a thabhairt nuair a iarrtar sin maidir leis an measúnú tionchair ar chosaint sonraí agus faireachán a dhéanamh ar a fheidhmíocht de bhun Airteagal 39 agus dul i gcomhairle leis an Maoirseoir Eorpach ar Chosaint Sonraí i gcás amhras faoin ngá le measúnú tionchair ar chosaint sonraí;

    to provide advice where requested as regards the data protection impact assessment and monitor its performance pursuant to Article 39 and to consult the European Data Protection Supervisor in case of doubt as to the need for a data protection impact assessment;

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  13. #2110338

    I gcás ina ndearna soláthraí measúnú tionchair ar chosaint sonraí agus ina ndeachaigh sé i gcomhairle leis na húdaráis mhaoirseachta maidir le teicneolaíocht i gcomhréir le Rialachán (AE) 2016/679 roimh theacht i bhfeidhm an Rialacháin seo, níor cheart é a bheith d’oibleagáid ar an soláthraí sin faoin Rialachán seo measúnú tionchair breise ar chosaint sonraí nó comhairliúchán breise a dhéanamh ar choinníoll go mbeidh sé curtha in iúl ag na húdaráis mhaoirseachta nach mbeadh ardriosca do chearta agus saoirsí daoine nádúrtha mar thoradh ar an bpróiseáil a dhéantar ar shonraí leis an teicneolaíocht sin nó go mbeadh bearta déanta ag an rialaitheoir chun riosca den sórt sin a mhaolú.

    Where a provider has conducted a data protection impact assessment and consulted the supervisory authorities with regard to a technology in accordance with Regulation (EU) 2016/679 prior to the entry into force of this Regulation, that provider should not be obliged under this Regulation to carry out an additional data protection impact assessment or consultation provided that the supervisory authorities have indicated that the processing of data by that technology would not result in a high risk to the rights and freedoms of natural persons or that measures have been taken by the controller to mitigate such a risk.

    Regulation (EU) 2021/1232 of the European Parliament and of the Council of 14 July 2021 on a temporary derogation from certain provisions of Directive 2002/58/EC as regards the use of technologies by providers of number-independent interpersonal communications services for the processing of personal and other data for the purpose of combating online child sexual abuse (Text with EEA relevance)

  14. #707412

    Rachaidh an rialaitheoir i gcomhairle leis an oifigeach cosanta sonraí, má tá ceann ceaptha, agus measúnú tionchair ar chosaint sonraí á dhéanamh.

    The controller shall seek the advice of the data protection officer, where designated, when carrying out a data protection impact assessment.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  15. #707413

    An measúnú tionchair ar chosaint sonraí dá dtagraítear i mír 1, beidh gá leis go háirithe i gcásanna:

    A data protection impact assessment referred to in paragraph 1 shall in particular be required in the case of:

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  16. #707417

    Bunóidh an t-údarás maoirseachta liosta de na cineálacha oibríochtaí próiseála atá faoi réir an cheanglais maidir le measúnú tionchair ar chosaint sonraí a dhéanamh de bhun mhír 1 agus cuirfidh sé an liosta sin ar fáil don phobal.

    The supervisory authority shall establish and make public a list of the kind of processing operations which are subject to the requirement for a data protection impact assessment pursuant to paragraph 1.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  17. #707419

    Féadfaidh an t-údarás maoirseachta liosta a leagan amach agus a chur ar fáil go poiblí de na cineálacha oibríochtaí próiseála nach gá measúnú tionchair ar chosaint sonraí a dhéanamh ina leith.

    The supervisory authority may also establish and make public a list of the kind of processing operations for which no data protection impact assessment is required.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  18. #707477

    comhairle a thabhairt nuair a iarrtar sin air maidir leis an measúnú tionchair ar chosaint sonraí agus faireachán a dhéanamh ar a fheidhmíocht de bhun Airteagal 33;

    to provide advice where requested as regards the data protection impact assessment and monitor its performance pursuant to Article 35;

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  19. #707720

    bunóidh sé agus coimeádfaidh sé ar bun liosta i ndáil leis an gceanglas le haghaidh measúnú tionchair a dhéanamh ar chosaint sonraí de bhun Airteagal 35(4);

    establish and maintain a list in relation to the requirement for data protection impact assessment pursuant to Article 35(4);

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  20. #707840

    dírítear ann ar liosta de na hoibríochtaí próiseála a ghlacadh faoi réir an cheanglais le haghaidh measúnú tionchair ar chosaint sonraí, de bhun Airteagal 35(4);

    aims to adopt a list of the processing operations subject to the requirement for a data protection impact assessment pursuant to Article 35(4);

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  21. #1722105

    Rachaidh an rialaitheoir i gcomhairle leis an oifigeach cosanta sonraí agus measúnú tionchair ar chosaint sonraí á dhéanamh.

    The controller shall seek the advice of the data protection officer when carrying out a data protection impact assessment.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  22. #1722106

    Measúnú tionchair ar chosaint sonraí dá dtagraítear i mír 1, beidh gá leis go háirithe sna cásanna seo a leanas:

    A data protection impact assessment referred to in paragraph 1 shall in particular be required in the case of:

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  23. #1722111

    Féadfaidh an Maoirseoir Eorpach ar Chosaint Sonraí liosta a leagan amach agus a chur ar fáil go poiblí de na cineálacha oibríochtaí próiseála nach gá measúnú tionchair ar chosaint sonraí a dhéanamh ina leith.

    The European Data Protection Supervisor may also establish and make public a list of the kind of processing operations for which no data protection impact assessment is required.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  24. #1722299

    bunóidh sé agus coimeádfaidh sé liosta i ndáil leis an gceanglas le haghaidh measúnú tionchair a dhéanamh ar chosaint sonraí de bhun Airteagal 39(4);

    establish and maintain a list in relation to the requirement for data protection impact assessment pursuant to Article 39(4);

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  25. #1722560

    i gcás ina léirítear i measúnú tionchair ar chosaint sonraí dá bhforáiltear faoi Airteagal 89 go mbainfeadh ardriosca leis an bpróiseáil in éagmais bearta a bheadh le glacadh ag an rialaitheoir chun an riosca sin a mhaolú; nó

    a data protection impact assessment under Article 89 indicates that the processing would result in a high risk in the absence of measures taken by the controller to mitigate the risk; or

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  26. #1724404

    comhairle a thabhairt nuair a iarrtar sin maidir leis an measúnú tionchair ar chosaint sonraí agus faireachán a dhéanamh ar a fheidhmíocht de bhun Airteagal 89 de Rialachán (AE) 2018/1725;

    providing advice where requested as regards the data protection impact assessment and monitoring its performance pursuant to Article 89 of Regulation (EU) 2018/1725;

    Regulation (EU) 2018/1727 of the European Parliament and of the Council of 14 November 2018 on the European Union Agency for Criminal Justice Cooperation (Eurojust), and replacing and repealing Council Decision 2002/187/JHA

  27. #1977866

    comhairle agus cúnamh a thabhairt do na rialaitheoirí tarmligthe agus do na rialaitheoirí oibríochtúla agus measúnú tionchair ar chosaint sonraí á dhéanamh aige nó aici i gcomhréir le hAirteagail 39 agus 40 de Rialachán (AE) 2018/1725.

    advise and assist the delegated controllers and the operational controllers when carrying out a data protection impact assessment in accordance with Articles 39 and 40 of Regulation (EU) 2018/1725;

    Council Decision (EU) 2021/1093 of 28 June 2021 laying down implementing rules concerning the Data Protection Officer of the Council, the application of Regulation (EU) 2018/1725 of the European Parliament and of the Council, and restrictions of data subjects’ rights in the context of the exercise of the tasks of the Data Protection Officer of the Council, and repealing Council Decision 2004/644/EC

  28. #706706

    D'fhonn feabhas a chur ar chomhlíonadh an Rialacháin seo, i gcás inar dócha, leis na hoibríochtaí próiseála, go mbeadh ardriosca ann i dtaca le cearta agus saoirsí na ndaoine nádúrtha, ba cheart don rialaitheoir a bheith freagrach as measúnú tionchair ar chosaint sonraí a dhéanamh chun meastóireacht a dhéanamh go háirithe ar thionscnamh, ar chineál, ar leithleachas agus ar dhéine an riosca sin.

    In order to enhance compliance with this Regulation where processing operations are likely to result in a high risk to the rights and freedoms of natural persons, the controller should be responsible for the carrying-out of a data protection impact assessment to evaluate, in particular, the origin, nature, particularity and severity of that risk.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  29. #706708

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí go mbaineann ardriosca le hoibríochtaí próiseála nach féidir leis an rialaitheoir a mhaolú trí bhearta iomchuí ó thaobh na teicneolaíochta atá ar fáil agus na gcostas a bhaineann leis an gcur chun feidhme, ba cheart dul i gcomhairle leis an údarás maoirseachta sula ndéantar an phróiseáil.

    Where a data-protection impact assessment indicates that processing operations involve a high risk which the controller cannot mitigate by appropriate measures in terms of available technology and costs of implementation, a consultation of the supervisory authority should take place prior to the processing.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  30. #706724

    Áirítear i gcineálacha oibríochtaí próiseála den sórt sin, go háirithe, na hoibríochtaí sin lena mbaintear úsáid as teicneolaíochtaí nua, nó na cinn ar de chineál nua iad agus nach bhfuil measúnú tionchair ar chosaint sonraí déanta ag an rialaitheoir ina leith go fóill nó na cinn a bhfuil measúnú tionchair ar chosaint sonraí tagtha chun bheith riachtanach mar gheall ar an tréimhse ama a chuaigh thart ón uair a rinneadh an phróiseáil tosaigh i leith.

    Such types of processing operations may be those which in, particular, involve using new technologies, or are of a new kind and where no data protection impact assessment has been carried out before by the controller, or where they become necessary in the light of the time that has elapsed since the initial processing.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  31. #706725

    I gcásanna den sórt sin, ba cheart don rialaitheoir measúnú tionchair a dhéanamh ar an gcosaint sonraí sula ndéanfar an phróiseáil, d'fhonn dóchúlacht faoi leith agus déine faoi leith an ardriosca sin a mheasúnú, agus cineál, raon feidhme, comhthéacs agus críocha na próiseála agus foinsí an riosca á gcur san áireamh.

    In such cases, a data protection impact assessment should be carried out by the controller prior to the processing in order to assess the particular likelihood and severity of the high risk, taking into account the nature, scope, context and purposes of the processing and the sources of the risk.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  32. #706728

    Ba cheart measúnú tionchair ar chosaint sonraí a dhéanamh freisin i gcás ina bpróiseáiltear sonraí pearsanta chun cinntí maidir le daoine sonracha nádúrtha a ghlacadh tar éis aon mheastóireacht chórasach agus chuimsitheach a dhéanamh ar ghnéithe pearsanta a bhaineann le daoine nádúrtha atá bunaithe ar na sonraí sin a phróifíliú nó tar éis catagóirí speisialta sonraí pearsanta, sonraí bithmhéadracha nó sonraí i ndáil le ciontuithe coiriúla agus le cionta nó le bearta slándála a phróiseáil.

    A data protection impact assessment should also be made where personal data are processed for taking decisions regarding specific natural persons following any systematic and extensive evaluation of personal aspects relating to natural persons based on profiling those data or following the processing of special categories of personal data, biometric data, or data on criminal convictions and offences or related security measures.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  33. #706729

    Éilítear measúnú tionchair ar chosaint sonraí freisin d'fhonn faireachán a dhéanamh, ar mhórscála, ar réimsí a bhfuil rochtain phoiblí orthu, go háirithe nuair atá feistí optacha leictreonacha á n-úsáid nó i gcomhair oibríochtaí eile ar bith ina meastar don údarás inniúil maoirseachta gur dócha go mbeadh ardriosca do chearta agus do shaoirsí na n-ábhar sonraí ag gabháil leis an bpróiseáil, go háirithe de bhrí go gcoisctear leo na hábhair sonraí ceart a fheidhmiú nó seirbhís nó conradh a úsáid, nó de bhrí go gcuirtear i gcrích iad go córasach nó ar mhórscála.

    A data protection impact assessment is equally required for monitoring publicly accessible areas on a large scale, especially when using optic-electronic devices or for any other operations where the competent supervisory authority considers that the processing is likely to result in a high risk to the rights and freedoms of data subjects, in particular because they prevent data subjects from exercising a right or using a service or a contract, or because they are carried out systematically on a large scale.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  34. #706732

    Tá cásanna áirithe ann ina bhféadfadh sé go mbeadh sé réasúnta agus tíosach go mbeadh an t-ábhar de mheasúnú tionchair ar chosaint sonraí níos leithne ná tionscadal amháin, i gcás, mar shampla, ina bhfuil sé beartaithe ag údaráis phoiblí nó comhlachtaí poiblí feidhmchlár coiteann nó clár coiteann próiseála a chur ar bun nó ina bhfuil sé beartaithe ag roinnt rialaitheoirí feidhmchlár coiteann nó timpeallacht choiteann próiseála a thabhairt isteach in earnáil tionscail nó i roinn tionscail trí chéile nó le haghaidh gníomhaíocht chothrománach atá in úsáid go forleathan.

    There are circumstances under which it may be reasonable and economical for the subject of a data protection impact assessment to be broader than a single project, for example where public authorities or bodies intend to establish a common application or processing platform or where several controllers plan to introduce a common application or processing environment across an industry sector or segment or for a widely used horizontal activity.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  35. #706734

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí go mbeadh ardriosca do chearta agus do shaoirsí daoine nádúrtha ag gabháil leis an bpróiseáil, in éagmais na gcoimircí, na mbeart slándála agus na sásraí a bheartaítear leis an riosca a mhaolú, agus i gcás ina bhfuil an rialaitheoir den tuairim nach bhféadfaí an riosca a mhaolú ar bhealach réasúnach ó thaobh na dteicneolaíochtaí atá ar fáil agus ó thaobh na gcostas chur chun feidhme, ba cheart dul i gcomhairle leis an údarás maoirseachta sula gcuirfí tús le gníomhaíochtaí próiseála.

    Where a data protection impact assessment indicates that the processing would, in the absence of safeguards, security measures and mechanisms to mitigate the risk, result in a high risk to the rights and freedoms of natural persons and the controller is of the opinion that the risk cannot be mitigated by reasonable means in terms of available technologies and costs of implementation, the supervisory authority should be consulted prior to the start of processing activities.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  36. #706738

    Mar chuid den phróiseas comhairliúcháin sin, féadfar an toradh ar mheasúnú tionchair ar chosaint sonraí a dhéantar maidir leis an bpróiseáil a chur faoi bhráid an údaráis mhaoirseachta, go háirithe na bearta atá beartaithe leis an riosca do chearta agus do shaoirsí na ndaoine nádúrtha a mhaolú.

    As part of that consultation process, the outcome of a data protection impact assessment carried out with regard to the processing at issue may be submitted to the supervisory authority, in particular the measures envisaged to mitigate the risk to the rights and freedoms of natural persons.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  37. #707427

    Maidir leis na rialaitheoirí agus na próiseálaithe ábhartha a bheith ag comhlíonadh na gcód iompair formheasta dá dtagraítear in Airteagal 40, cuirfear é sin san áireamh agus measúnú á dhéanamh ar thionchar na n-oibríochtaí próiseála a dhéanann na rialaitheoirí nó na próiseálaithe sin, go háirithe chun críocha measúnú tionchair ar chosaint sonraí.

    Compliance with approved codes of conduct referred to in Article 40 by the relevant controllers or processors shall be taken into due account in assessing the impact of the processing operations performed by such controllers or processors, in particular for the purposes of a data protection impact assessment.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  38. #707429

    I gcás ina bhfuil bunús dlí ag an bpróiseáil de bhun phointe (c) nó (e) d'Airteagal 6(1) i ndlí an Aontais nó i ndlí Ballstáit ar faoina réir atá an rialaitheoir, agus go rialaíonn an dlí sin an oibríocht próiseála shonrach nó an sraith d'oibríochtaí atá i gceist, agus ina bhfuil measúnú tionchair ar chosaint sonraí déanta cheana mar chuid de mheasúnú ginearálta tionchair i gcomhthéacs ghlacadh an bhunúis dlí sin, ní bheidh feidhm ag mír 1 go mír 7, mura measann na Ballstáit go bhfuil sé riachtanach measúnú den sórt sin a dhéanamh sula rachfar i mbun na ngníomhaíochtaí próiseála.

    Where processing pursuant to point (c) or (e) of Article 6(1) has a legal basis in Union law or in the law of the Member State to which the controller is subject, that law regulates the specific processing operation or set of operations in question, and a data protection impact assessment has already been carried out as part of a general impact assessment in the context of the adoption of that legal basis, paragraphs 1 to 7 shall not apply unless Member States deem it to be necessary to carry out such an assessment prior to processing activities.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  39. #707430

    I gcás inar gá, déanfaidh an rialaitheoir athbhreithniú chun a mheas an bhfuil an phróiseáil á déanamh i gcomhréir leis an measúnú tionchair ar chosaint sonraí, ar a laghad nuair a bhíonn athrú sa riosca a bhaineann le hoibríochtaí próiseála.

    Where necessary, the controller shall carry out a review to assess if processing is performed in accordance with the data protection impact assessment at least when there is a change of the risk represented by processing operations.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  40. #707433

    Rachaidh an rialaitheoir i gcomhairle leis an údarás maoirseachta sula ndéanfar an phróiseáil i gcás ina léirítear sa mheasúnú tionchair ar chosaint sonraí faoi Airteagal 35 gur dóchúil go mbainfeadh ardriosca leis an bpróiseáil in éagmais bearta a bheadh le glacadh ag an rialaitheoir chun an riosca sin a mhaolú.

    The controller shall consult the supervisory authority prior to processing where a data protection impact assessment under Article 35 indicates that the processing would result in a high risk in the absence of measures taken by the controller to mitigate the risk.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  41. #1721592

    Ba cheart na nósanna imeachta sin, go háirithe, a bheith i bhfeidhm i gcás inarb é atá i gceist leis na cineálacha oibríochtaí próiseála úsáid a bheith á baint as nuatheicneolaíochtaí, nó na cinn ar de chineál nua iad agus nach bhfuil measúnú tionchair ar chosaint sonraí déanta ag an rialaitheoir ina leith go fóill nó na cinn a bhaineann le measúnú tionchair ar chosaint sonraí tagtha chun bheith riachtanach mar gheall ar an tréimhse ama a chuaigh thart ón uair a rinneadh an phróiseáil tosaigh i leith.

    Such procedures should, in particular, also be in place where types of processing operations involve using new technologies, or are of a new kind in relation to which no data protection impact assessment has been carried out before by the controller, or where they become necessary in the light of the time that has elapsed since the initial processing.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  42. #1721593

    I gcásanna den sórt sin, ba cheart don rialaitheoir measúnú tionchair a dhéanamh ar an gcosaint sonraí sula ndéanfar an phróiseáil, chun dóchúlacht faoi leith agus déine faoi leith an ardriosca sin a mheasúnú, agus cineál, raon feidhme, comhthéacs agus críocha na próiseála agus foinsí an riosca á gcur san áireamh.

    In such cases, a data protection impact assessment should be carried out by the controller prior to the processing in order to assess the particular likelihood and severity of the high risk, taking into account the nature, scope, context and purposes of the processing and the sources of the risk.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  43. #1721595

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí go mbeadh ardriosca do chearta agus do shaoirsí daoine nádúrtha ag gabháil leis an bpróiseáil, in éagmais coimircí, bearta slándála agus sásraí chun an riosca a mhaolú, agus i gcás ina bhfuil an rialaitheoir den tuairim nach bhféadfaí an riosca a mhaolú ar bhealach réasúnach ó thaobh na dteicneolaíochtaí atá ar fáil agus ó thaobh na gcostas chur chun feidhme, ba cheart dul i gcomhairle leis an Maoirseoir Eorpach ar Chosaint Sonraí sula gcuirfí tús le gníomhaíochtaí próiseála.

    Where a data protection impact assessment indicates that the processing would, in the absence of safeguards, security measures and mechanisms to mitigate the risk, result in a high risk to the rights and freedoms of natural persons and the controller is of the opinion that the risk cannot be mitigated by reasonable means in terms of available technologies and costs of implementation, the European Data Protection Supervisor should be consulted prior to the start of processing activities.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  44. #1721599

    Mar chuid den phróiseas comhairliúcháin sin, ba cheart go bhféadfaí toradh ar mheasúnú tionchair ar chosaint sonraí a dhéantar maidir leis an bpróiseáil a chur faoi bhráid an Mhaoirseora Eorpaigh ar Chosaint Sonraí, go háirithe na bearta atá beartaithe chun an riosca do chearta agus do shaoirsí na ndaoine nádúrtha a mhaolú.

    As part of that consultation process, it should be possible to submit the outcome of a data protection impact assessment carried out with regard to the processing at issue to the European Data Protection Supervisor, in particular the measures envisaged to mitigate the risk to the rights and freedoms of natural persons.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  45. #1722110

    Bunóidh an Maoirseoir Eorpach ar Chosaint Sonraí liosta de na cineálacha oibríochtaí próiseála atá faoi réir an cheanglais maidir le measúnú tionchair ar chosaint sonraí a dhéanamh de bhun mhír 1 agus cuirfidh sé an liosta sin ar fáil don phobal.

    The European Data Protection Supervisor shall establish and make public a list of the kind of processing operations which are subject to the requirement for a data protection impact assessment pursuant to paragraph 1.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  46. #1722118

    Maidir leis na próiseálaithe ábhartha, seachas institiúidí agus comhlachtaí an Aontais, a bheith ag comhlíonadh na gcód iompair formheasta dá dtagraítear in Airteagal 40 de Rialachán (AE) 2016/679, cuirfear é sin san áireamh go cuí agus measúnú á dhéanamh ar thionchar na n-oibríochtaí próiseála a dhéanann na próiseálaithe sin, go háirithe chun críocha measúnú tionchair ar chosaint sonraí.

    Compliance with approved codes of conduct referred to in Article 40 of the Regulation (EU) 2016/679 by the relevant processors other than Union institutions and bodies shall be taken into due account in assessing the impact of the processing operations performed by such processors, in particular for the purposes of a data protection impact assessment.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  47. #1722120

    I gcás ina bhfuil bunús dlí ag an bpróiseáil de bhun phointe (a) nó (b) d’Airteagal 5(1) i ngníomh dlí arna ghlacadh ar bhonn na gConarthaí agus go rialaítear leis sin an oibríocht phróiseála shonrach nó an tacar oibríochtaí atá i gceist, agus go bhfuil measúnú tionchair ar chosaint sonraí déanta cheana mar chuid de mheasúnú tionchair ginearálta roimh ghlacadh an ghnímh dlí sin, ní bheidh feidhm ag mír1 go mír 6 den Airteagal seo mura bhforáiltear a mhalairt leis an ngníomh dlí sin.

    Where processing pursuant to point (a) or (b) of Article 5(1) has a legal basis in a legal act adopted on the basis of the Treaties, which regulates the specific processing operation or set of operations in question, and where a data protection impact assessment has already been carried out as part of a general impact assessment preceding the adoption of that legal act, paragraphs 1 to 6 of this Article shall not apply unless that legal act provides otherwise.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  48. #1722121

    I gcás inar gá, déanfaidh an rialaitheoir athbhreithniú chun a mheas an bhfuil an phróiseáil á déanamh i gcomhréir leis an measúnú tionchair ar chosaint sonraí, ar a laghad nuair a bhíonn athrú sa riosca a bhaineann le hoibríochtaí próiseála.

    Where necessary, the controller shall carry out a review to assess if processing is performed in accordance with the data protection impact assessment at least when there is a change of the risk represented by processing operations.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  49. #1722124

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí faoi Airteagal 39 go mbeadh ardriosca do chearta agus do shaoirsí daoine nádúrtha ag gabháil leis an bpróiseáil in éagmais coimircí, bearta slándála agus sásraí chun an riosca a mhaolú, agus i gcás ina bhfuil an rialaitheoir den tuairim nach bhféadfaí an riosca a mhaolú ar bhealach réasúnach ó thaobh na dteicneolaíochtaí atá ar fáil agus ó thaobh na gcostas cur chun feidhme, rachaidh an rialaitheoir i gcomhairle leis an Maoirseoir Eorpach ar Chosaint Sonraí sula rachfar i mbun na ngníomhaíochtaí próiseála.

    The controller shall consult the European Data Protection Supervisor prior to processing where a data protection impact assessment under Article 39 indicates that the processing would, in the absence of safeguards, security measures and mechanisms to mitigate the risk, result in a high risk to the rights and freedoms of natural persons and the controller is of the opinion that the risk cannot be mitigated by reasonable means in view of the available technologies and costs of implementation.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  50. #1722563

    Déanfaidh an rialaitheoir an measúnú tionchair ar chosaint sonraí arna dhéanamh de bhun Airteagal 89 a sholáthar don Mhaoirseoir Eorpach ar Chosaint Sonraí agus, arna iarraidh sin, soláthróidh sé aon fhaisnéis eile a chuirfidh ar chumas an Mhaoirseora Eorpaigh ar Chosaint Sonraí measúnú a dhéanamh maidir le comhlíonadh na próiseála agus go háirithe maidir leis na rioscaí do chosaint sonraí pearsanta oibríochtúla an ábhair sonraí agus maidir leis na coimircí gaolmhara.

    The controller shall provide the European Data Protection Supervisor with the data protection impact assessment referred to Article 89 and, on request, with any other information to allow the European Data Protection Supervisor to make an assessment of the compliance of the processing and in particular of the risks for the protection of operational personal data of the data subject and of the related safeguards.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.