Gaois

Search direction

Search mode

Filter results

Collections

52 results in 16 documents

  1. #706731

    I gcásanna den sórt sin, níor cheart measúnú tionchair ar chosaint sonraí a bheith éigeantach.

    In such cases, a data protection impact assessment should not be mandatory.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  2. #707407

    Measúnú tionchair ar chosaint sonraí agus réamhchomhairliúchán

    Data protection impact assessment and prior consultation

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  3. #707409

    Measúnú tionchair ar chosaint sonraí

    Data protection impact assessment

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  4. #707443

    an measúnú tionchair ar chosaint sonraí dá bhforáiltear in Airteagal 35; agus

    the data protection impact assessment provided for in Article 35; and

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  5. #1722100

    Measúnú tionchair ar chosaint sonraí agus réamhchomhairliúchán

    Data protection impact assessment and prior consultation

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  6. #1722102

    Measúnú tionchair ar chosaint sonraí

    Data protection impact assessment

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  7. #1722134

    an measúnú tionchair ar chosaint sonraí dá bhforáiltear in Airteagal 39; agus

    the data protection impact assessment provided for in Article 39; and

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  8. #1973421

    Measúnú Tionchair ar Chosaint Sonraí

    Data Protection Impact Assessment

    Commission Implementing Decision (EU) 2021/858 of 27 May 2021 amending Implementing Decision (EU) 2017/253 as regards alerts triggered by serious cross-border threats to health and for the contact tracing of passengers identified through Passenger Locator Forms (Text with EEA relevance)

  9. #2246436

    Measúnú Tionchair ar Chosaint Sonraí

    Data Protection Impact Assessment

    Commission Implementing Decision (EU) 2022/483 of 21 March 2022 amending Implementing Decision (EU) 2021/1073 laying down technical specifications and rules for the implementation of the trust framework for the EU Digital COVID Certificate established by Regulation (EU) 2021/953 of the European Parliament and of the Council (Text with EEA relevance)

  10. #3226711

    Measúnú tionchair ar chosaint sonraí

    DATA PROTECTION IMPACT ASSESSMENT

    Commission Implementing Regulation (EU) 2024/607 of 15 February 2024 on the practical and operational arrangements for the functioning of the information sharing system pursuant to Regulation (EU) 2022/2065 of the European Parliament and of the Council (Digital Services Act)

  11. #706724

    Áirítear i gcineálacha oibríochtaí próiseála den sórt sin, go háirithe, na hoibríochtaí sin lena mbaintear úsáid as teicneolaíochtaí nua, nó na cinn ar de chineál nua iad agus nach bhfuil measúnú tionchair ar chosaint sonraí déanta ag an rialaitheoir ina leith go fóill nó na cinn a bhfuil measúnú tionchair ar chosaint sonraí tagtha chun bheith riachtanach mar gheall ar an tréimhse ama a chuaigh thart ón uair a rinneadh an phróiseáil tosaigh i leith.

    Such types of processing operations may be those which in, particular, involve using new technologies, or are of a new kind and where no data protection impact assessment has been carried out before by the controller, or where they become necessary in the light of the time that has elapsed since the initial processing.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  12. #1721592

    Ba cheart na nósanna imeachta sin, go háirithe, a bheith i bhfeidhm i gcás inarb é atá i gceist leis na cineálacha oibríochtaí próiseála úsáid a bheith á baint as nuatheicneolaíochtaí, nó na cinn ar de chineál nua iad agus nach bhfuil measúnú tionchair ar chosaint sonraí déanta ag an rialaitheoir ina leith go fóill nó na cinn a bhaineann le measúnú tionchair ar chosaint sonraí tagtha chun bheith riachtanach mar gheall ar an tréimhse ama a chuaigh thart ón uair a rinneadh an phróiseáil tosaigh i leith.

    Such procedures should, in particular, also be in place where types of processing operations involve using new technologies, or are of a new kind in relation to which no data protection impact assessment has been carried out before by the controller, or where they become necessary in the light of the time that has elapsed since the initial processing.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  13. #1722183

    comhairle a thabhairt nuair a iarrtar sin maidir leis an measúnú tionchair ar chosaint sonraí agus faireachán a dhéanamh ar a fheidhmíocht de bhun Airteagal 39 agus dul i gcomhairle leis an Maoirseoir Eorpach ar Chosaint Sonraí i gcás amhras faoin ngá le measúnú tionchair ar chosaint sonraí;

    to provide advice where requested as regards the data protection impact assessment and monitor its performance pursuant to Article 39 and to consult the European Data Protection Supervisor in case of doubt as to the need for a data protection impact assessment;

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  14. #707412

    Rachaidh an rialaitheoir i gcomhairle leis an oifigeach cosanta sonraí, má tá ceann ceaptha, agus measúnú tionchair ar chosaint sonraí á dhéanamh.

    The controller shall seek the advice of the data protection officer, where designated, when carrying out a data protection impact assessment.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  15. #707413

    An measúnú tionchair ar chosaint sonraí dá dtagraítear i mír 1, beidh gá leis go háirithe i gcásanna:

    A data protection impact assessment referred to in paragraph 1 shall in particular be required in the case of:

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  16. #707419

    Féadfaidh an t-údarás maoirseachta liosta a leagan amach agus a chur ar fáil go poiblí de na cineálacha oibríochtaí próiseála nach gá measúnú tionchair ar chosaint sonraí a dhéanamh ina leith.

    The supervisory authority may also establish and make public a list of the kind of processing operations for which no data protection impact assessment is required.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  17. #707477

    comhairle a thabhairt nuair a iarrtar sin air maidir leis an measúnú tionchair ar chosaint sonraí agus faireachán a dhéanamh ar a fheidhmíocht de bhun Airteagal 33;

    to provide advice where requested as regards the data protection impact assessment and monitor its performance pursuant to Article 35;

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  18. #707840

    dírítear ann ar liosta de na hoibríochtaí próiseála a ghlacadh faoi réir an cheanglais le haghaidh measúnú tionchair ar chosaint sonraí, de bhun Airteagal 35(4);

    aims to adopt a list of the processing operations subject to the requirement for a data protection impact assessment pursuant to Article 35(4);

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  19. #1722105

    Rachaidh an rialaitheoir i gcomhairle leis an oifigeach cosanta sonraí agus measúnú tionchair ar chosaint sonraí á dhéanamh.

    The controller shall seek the advice of the data protection officer when carrying out a data protection impact assessment.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  20. #1722106

    Measúnú tionchair ar chosaint sonraí dá dtagraítear i mír 1, beidh gá leis go háirithe sna cásanna seo a leanas:

    A data protection impact assessment referred to in paragraph 1 shall in particular be required in the case of:

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  21. #1724404

    comhairle a thabhairt nuair a iarrtar sin maidir leis an measúnú tionchair ar chosaint sonraí agus faireachán a dhéanamh ar a fheidhmíocht de bhun Airteagal 89 de Rialachán (AE) 2018/1725;

    providing advice where requested as regards the data protection impact assessment and monitoring its performance pursuant to Article 89 of Regulation (EU) 2018/1725;

    Regulation (EU) 2018/1727 of the European Parliament and of the Council of 14 November 2018 on the European Union Agency for Criminal Justice Cooperation (Eurojust), and replacing and repealing Council Decision 2002/187/JHA

  22. #706706

    D'fhonn feabhas a chur ar chomhlíonadh an Rialacháin seo, i gcás inar dócha, leis na hoibríochtaí próiseála, go mbeadh ardriosca ann i dtaca le cearta agus saoirsí na ndaoine nádúrtha, ba cheart don rialaitheoir a bheith freagrach as measúnú tionchair ar chosaint sonraí a dhéanamh chun meastóireacht a dhéanamh go háirithe ar thionscnamh, ar chineál, ar leithleachas agus ar dhéine an riosca sin.

    In order to enhance compliance with this Regulation where processing operations are likely to result in a high risk to the rights and freedoms of natural persons, the controller should be responsible for the carrying-out of a data protection impact assessment to evaluate, in particular, the origin, nature, particularity and severity of that risk.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  23. #706708

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí go mbaineann ardriosca le hoibríochtaí próiseála nach féidir leis an rialaitheoir a mhaolú trí bhearta iomchuí ó thaobh na teicneolaíochta atá ar fáil agus na gcostas a bhaineann leis an gcur chun feidhme, ba cheart dul i gcomhairle leis an údarás maoirseachta sula ndéantar an phróiseáil.

    Where a data-protection impact assessment indicates that processing operations involve a high risk which the controller cannot mitigate by appropriate measures in terms of available technology and costs of implementation, a consultation of the supervisory authority should take place prior to the processing.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  24. #706728

    Ba cheart measúnú tionchair ar chosaint sonraí a dhéanamh freisin i gcás ina bpróiseáiltear sonraí pearsanta chun cinntí maidir le daoine sonracha nádúrtha a ghlacadh tar éis aon mheastóireacht chórasach agus chuimsitheach a dhéanamh ar ghnéithe pearsanta a bhaineann le daoine nádúrtha atá bunaithe ar na sonraí sin a phróifíliú nó tar éis catagóirí speisialta sonraí pearsanta, sonraí bithmhéadracha nó sonraí i ndáil le ciontuithe coiriúla agus le cionta nó le bearta slándála a phróiseáil.

    A data protection impact assessment should also be made where personal data are processed for taking decisions regarding specific natural persons following any systematic and extensive evaluation of personal aspects relating to natural persons based on profiling those data or following the processing of special categories of personal data, biometric data, or data on criminal convictions and offences or related security measures.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  25. #706729

    Éilítear measúnú tionchair ar chosaint sonraí freisin d'fhonn faireachán a dhéanamh, ar mhórscála, ar réimsí a bhfuil rochtain phoiblí orthu, go háirithe nuair atá feistí optacha leictreonacha á n-úsáid nó i gcomhair oibríochtaí eile ar bith ina meastar don údarás inniúil maoirseachta gur dócha go mbeadh ardriosca do chearta agus do shaoirsí na n-ábhar sonraí ag gabháil leis an bpróiseáil, go háirithe de bhrí go gcoisctear leo na hábhair sonraí ceart a fheidhmiú nó seirbhís nó conradh a úsáid, nó de bhrí go gcuirtear i gcrích iad go córasach nó ar mhórscála.

    A data protection impact assessment is equally required for monitoring publicly accessible areas on a large scale, especially when using optic-electronic devices or for any other operations where the competent supervisory authority considers that the processing is likely to result in a high risk to the rights and freedoms of data subjects, in particular because they prevent data subjects from exercising a right or using a service or a contract, or because they are carried out systematically on a large scale.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  26. #706734

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí go mbeadh ardriosca do chearta agus do shaoirsí daoine nádúrtha ag gabháil leis an bpróiseáil, in éagmais na gcoimircí, na mbeart slándála agus na sásraí a bheartaítear leis an riosca a mhaolú, agus i gcás ina bhfuil an rialaitheoir den tuairim nach bhféadfaí an riosca a mhaolú ar bhealach réasúnach ó thaobh na dteicneolaíochtaí atá ar fáil agus ó thaobh na gcostas chur chun feidhme, ba cheart dul i gcomhairle leis an údarás maoirseachta sula gcuirfí tús le gníomhaíochtaí próiseála.

    Where a data protection impact assessment indicates that the processing would, in the absence of safeguards, security measures and mechanisms to mitigate the risk, result in a high risk to the rights and freedoms of natural persons and the controller is of the opinion that the risk cannot be mitigated by reasonable means in terms of available technologies and costs of implementation, the supervisory authority should be consulted prior to the start of processing activities.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  27. #707417

    Bunóidh an t-údarás maoirseachta liosta de na cineálacha oibríochtaí próiseála atá faoi réir an cheanglais maidir le measúnú tionchair ar chosaint sonraí a dhéanamh de bhun mhír 1 agus cuirfidh sé an liosta sin ar fáil don phobal.

    The supervisory authority shall establish and make public a list of the kind of processing operations which are subject to the requirement for a data protection impact assessment pursuant to paragraph 1.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  28. #707427

    Maidir leis na rialaitheoirí agus na próiseálaithe ábhartha a bheith ag comhlíonadh na gcód iompair formheasta dá dtagraítear in Airteagal 40, cuirfear é sin san áireamh agus measúnú á dhéanamh ar thionchar na n-oibríochtaí próiseála a dhéanann na rialaitheoirí nó na próiseálaithe sin, go háirithe chun críocha measúnú tionchair ar chosaint sonraí.

    Compliance with approved codes of conduct referred to in Article 40 by the relevant controllers or processors shall be taken into due account in assessing the impact of the processing operations performed by such controllers or processors, in particular for the purposes of a data protection impact assessment.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  29. #707429

    I gcás ina bhfuil bunús dlí ag an bpróiseáil de bhun phointe (c) nó (e) d'Airteagal 6(1) i ndlí an Aontais nó i ndlí Ballstáit ar faoina réir atá an rialaitheoir, agus go rialaíonn an dlí sin an oibríocht próiseála shonrach nó an sraith d'oibríochtaí atá i gceist, agus ina bhfuil measúnú tionchair ar chosaint sonraí déanta cheana mar chuid de mheasúnú ginearálta tionchair i gcomhthéacs ghlacadh an bhunúis dlí sin, ní bheidh feidhm ag mír 1 go mír 7, mura measann na Ballstáit go bhfuil sé riachtanach measúnú den sórt sin a dhéanamh sula rachfar i mbun na ngníomhaíochtaí próiseála.

    Where processing pursuant to point (c) or (e) of Article 6(1) has a legal basis in Union law or in the law of the Member State to which the controller is subject, that law regulates the specific processing operation or set of operations in question, and a data protection impact assessment has already been carried out as part of a general impact assessment in the context of the adoption of that legal basis, paragraphs 1 to 7 shall not apply unless Member States deem it to be necessary to carry out such an assessment prior to processing activities.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  30. #707430

    I gcás inar gá, déanfaidh an rialaitheoir athbhreithniú chun a mheas an bhfuil an phróiseáil á déanamh i gcomhréir leis an measúnú tionchair ar chosaint sonraí, ar a laghad nuair a bhíonn athrú sa riosca a bhaineann le hoibríochtaí próiseála.

    Where necessary, the controller shall carry out a review to assess if processing is performed in accordance with the data protection impact assessment at least when there is a change of the risk represented by processing operations.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance)

  31. #1721595

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí go mbeadh ardriosca do chearta agus do shaoirsí daoine nádúrtha ag gabháil leis an bpróiseáil, in éagmais coimircí, bearta slándála agus sásraí chun an riosca a mhaolú, agus i gcás ina bhfuil an rialaitheoir den tuairim nach bhféadfaí an riosca a mhaolú ar bhealach réasúnach ó thaobh na dteicneolaíochtaí atá ar fáil agus ó thaobh na gcostas chur chun feidhme, ba cheart dul i gcomhairle leis an Maoirseoir Eorpach ar Chosaint Sonraí sula gcuirfí tús le gníomhaíochtaí próiseála.

    Where a data protection impact assessment indicates that the processing would, in the absence of safeguards, security measures and mechanisms to mitigate the risk, result in a high risk to the rights and freedoms of natural persons and the controller is of the opinion that the risk cannot be mitigated by reasonable means in terms of available technologies and costs of implementation, the European Data Protection Supervisor should be consulted prior to the start of processing activities.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  32. #1722110

    Bunóidh an Maoirseoir Eorpach ar Chosaint Sonraí liosta de na cineálacha oibríochtaí próiseála atá faoi réir an cheanglais maidir le measúnú tionchair ar chosaint sonraí a dhéanamh de bhun mhír 1 agus cuirfidh sé an liosta sin ar fáil don phobal.

    The European Data Protection Supervisor shall establish and make public a list of the kind of processing operations which are subject to the requirement for a data protection impact assessment pursuant to paragraph 1.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  33. #1722111

    Féadfaidh an Maoirseoir Eorpach ar Chosaint Sonraí liosta a leagan amach agus a chur ar fáil go poiblí de na cineálacha oibríochtaí próiseála nach gá measúnú tionchair ar chosaint sonraí a dhéanamh ina leith.

    The European Data Protection Supervisor may also establish and make public a list of the kind of processing operations for which no data protection impact assessment is required.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  34. #1722118

    Maidir leis na próiseálaithe ábhartha, seachas institiúidí agus comhlachtaí an Aontais, a bheith ag comhlíonadh na gcód iompair formheasta dá dtagraítear in Airteagal 40 de Rialachán (AE) 2016/679, cuirfear é sin san áireamh go cuí agus measúnú á dhéanamh ar thionchar na n-oibríochtaí próiseála a dhéanann na próiseálaithe sin, go háirithe chun críocha measúnú tionchair ar chosaint sonraí.

    Compliance with approved codes of conduct referred to in Article 40 of the Regulation (EU) 2016/679 by the relevant processors other than Union institutions and bodies shall be taken into due account in assessing the impact of the processing operations performed by such processors, in particular for the purposes of a data protection impact assessment.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  35. #1722120

    I gcás ina bhfuil bunús dlí ag an bpróiseáil de bhun phointe (a) nó (b) d’Airteagal 5(1) i ngníomh dlí arna ghlacadh ar bhonn na gConarthaí agus go rialaítear leis sin an oibríocht phróiseála shonrach nó an tacar oibríochtaí atá i gceist, agus go bhfuil measúnú tionchair ar chosaint sonraí déanta cheana mar chuid de mheasúnú tionchair ginearálta roimh ghlacadh an ghnímh dlí sin, ní bheidh feidhm ag mír1 go mír 6 den Airteagal seo mura bhforáiltear a mhalairt leis an ngníomh dlí sin.

    Where processing pursuant to point (a) or (b) of Article 5(1) has a legal basis in a legal act adopted on the basis of the Treaties, which regulates the specific processing operation or set of operations in question, and where a data protection impact assessment has already been carried out as part of a general impact assessment preceding the adoption of that legal act, paragraphs 1 to 6 of this Article shall not apply unless that legal act provides otherwise.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  36. #1722121

    I gcás inar gá, déanfaidh an rialaitheoir athbhreithniú chun a mheas an bhfuil an phróiseáil á déanamh i gcomhréir leis an measúnú tionchair ar chosaint sonraí, ar a laghad nuair a bhíonn athrú sa riosca a bhaineann le hoibríochtaí próiseála.

    Where necessary, the controller shall carry out a review to assess if processing is performed in accordance with the data protection impact assessment at least when there is a change of the risk represented by processing operations.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  37. #1722124

    I gcás ina léirítear le measúnú tionchair ar chosaint sonraí faoi Airteagal 39 go mbeadh ardriosca do chearta agus do shaoirsí daoine nádúrtha ag gabháil leis an bpróiseáil in éagmais coimircí, bearta slándála agus sásraí chun an riosca a mhaolú, agus i gcás ina bhfuil an rialaitheoir den tuairim nach bhféadfaí an riosca a mhaolú ar bhealach réasúnach ó thaobh na dteicneolaíochtaí atá ar fáil agus ó thaobh na gcostas cur chun feidhme, rachaidh an rialaitheoir i gcomhairle leis an Maoirseoir Eorpach ar Chosaint Sonraí sula rachfar i mbun na ngníomhaíochtaí próiseála.

    The controller shall consult the European Data Protection Supervisor prior to processing where a data protection impact assessment under Article 39 indicates that the processing would, in the absence of safeguards, security measures and mechanisms to mitigate the risk, result in a high risk to the rights and freedoms of natural persons and the controller is of the opinion that the risk cannot be mitigated by reasonable means in view of the available technologies and costs of implementation.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  38. #1722560

    i gcás ina léirítear i measúnú tionchair ar chosaint sonraí dá bhforáiltear faoi Airteagal 89 go mbainfeadh ardriosca leis an bpróiseáil in éagmais bearta a bheadh le glacadh ag an rialaitheoir chun an riosca sin a mhaolú; nó

    a data protection impact assessment under Article 89 indicates that the processing would result in a high risk in the absence of measures taken by the controller to mitigate the risk; or

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  39. #1722563

    Déanfaidh an rialaitheoir an measúnú tionchair ar chosaint sonraí arna dhéanamh de bhun Airteagal 89 a sholáthar don Mhaoirseoir Eorpach ar Chosaint Sonraí agus, arna iarraidh sin, soláthróidh sé aon fhaisnéis eile a chuirfidh ar chumas an Mhaoirseora Eorpaigh ar Chosaint Sonraí measúnú a dhéanamh maidir le comhlíonadh na próiseála agus go háirithe maidir leis na rioscaí do chosaint sonraí pearsanta oibríochtúla an ábhair sonraí agus maidir leis na coimircí gaolmhara.

    The controller shall provide the European Data Protection Supervisor with the data protection impact assessment referred to Article 89 and, on request, with any other information to allow the European Data Protection Supervisor to make an assessment of the compliance of the processing and in particular of the risks for the protection of operational personal data of the data subject and of the related safeguards.

    Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/ECText with EEA relevance.

  40. #1974671

    an oibleagáid measúnú a dhéanamh ar thionchar na n-oibríochtaí próiseála atá beartaithe ar chosaint sonraí pearsanta (‘measúnú tionchair ar chosaint sonraí’) i gcás inar dócha go mbeadh ardriosca do chearta agus do shaoirsí daoine nádúrtha mar thoradh ar chineál próiseála;

    the obligation to carry out an assessment of the impact of the envisaged processing operations on the protection of personal data (a ‘data protection impact assessment’) where a type of processing is likely to result in a high risk to the rights and freedoms of natural persons;

    Commission Implementing Decision (EU) 2021/915 of 4 June 2021 on standard contractual clauses between controllers and processors under Article 28(7) of Regulation (EU) 2016/679 of the European Parliament and of the Council and Article 29(7) of Regulation (EU) 2018/1725 of the European Parliament and of the Council (Text with EEA relevance)

  41. #1977866

    comhairle agus cúnamh a thabhairt do na rialaitheoirí tarmligthe agus do na rialaitheoirí oibríochtúla agus measúnú tionchair ar chosaint sonraí á dhéanamh aige nó aici i gcomhréir le hAirteagail 39 agus 40 de Rialachán (AE) 2018/1725.

    advise and assist the delegated controllers and the operational controllers when carrying out a data protection impact assessment in accordance with Articles 39 and 40 of Regulation (EU) 2018/1725;

    Council Decision (EU) 2021/1093 of 28 June 2021 laying down implementing rules concerning the Data Protection Officer of the Council, the application of Regulation (EU) 2018/1725 of the European Parliament and of the Council, and restrictions of data subjects’ rights in the context of the exercise of the tasks of the Data Protection Officer of the Council, and repealing Council Decision 2004/644/EC

  42. #1977932

    Déanfaidh na rialaitheoirí oibríochtúla measúnú ar an riosca do chearta agus saoirsí an ábhair sonraí i ndáil leis na hoibríochtaí próiseála a bhfuil siad freagrach astu agus, i gcás inarb iomchuí, déanfaidh siad measúnú tionchair ar chosaint sonraí.

    Operational controllers shall assess the risk for the rights and freedoms of the data subject related to the processing operations for which they are responsible and, where appropriate, carry out a data protection impact assessment.

    Council Decision (EU) 2021/1093 of 28 June 2021 laying down implementing rules concerning the Data Protection Officer of the Council, the application of Regulation (EU) 2018/1725 of the European Parliament and of the Council, and restrictions of data subjects’ rights in the context of the exercise of the tasks of the Data Protection Officer of the Council, and repealing Council Decision 2004/644/EC

  43. #2110338

    I gcás ina ndearna soláthraí measúnú tionchair ar chosaint sonraí agus ina ndeachaigh sé i gcomhairle leis na húdaráis mhaoirseachta maidir le teicneolaíocht i gcomhréir le Rialachán (AE) 2016/679 roimh theacht i bhfeidhm an Rialacháin seo, níor cheart é a bheith d’oibleagáid ar an soláthraí sin faoin Rialachán seo measúnú tionchair breise ar chosaint sonraí nó comhairliúchán breise a dhéanamh ar choinníoll go mbeidh sé curtha in iúl ag na húdaráis mhaoirseachta nach mbeadh ardriosca do chearta agus saoirsí daoine nádúrtha mar thoradh ar an bpróiseáil a dhéantar ar shonraí leis an teicneolaíocht sin nó go mbeadh bearta déanta ag an rialaitheoir chun riosca den sórt sin a mhaolú.

    Where a provider has conducted a data protection impact assessment and consulted the supervisory authorities with regard to a technology in accordance with Regulation (EU) 2016/679 prior to the entry into force of this Regulation, that provider should not be obliged under this Regulation to carry out an additional data protection impact assessment or consultation provided that the supervisory authorities have indicated that the processing of data by that technology would not result in a high risk to the rights and freedoms of natural persons or that measures have been taken by the controller to mitigate such a risk.

    Regulation (EU) 2021/1232 of the European Parliament and of the Council of 14 July 2021 on a temporary derogation from certain provisions of Directive 2002/58/EC as regards the use of technologies by providers of number-independent interpersonal communications services for the processing of personal and other data for the purpose of combating online child sexual abuse (Text with EEA relevance)

  44. #2202864

    Bainfidh úsáideoirí córas intleachta saorga ardriosca úsáid as an bhfaisnéis arna soláthar faoi Airteagal 13 chun a n‑oibleagáid measúnú tionchair ar chosaint sonraí a dhéanamh faoi Airteagal 35 de Rialachán (AE) 2016/679 nó Airteagal 27 de Threoir (AE) 2016/680, i gcás inarb infheidhme.

    Users of high-risk AI systems shall use the information provided under Article 13 to comply with their obligation to carry out a data protection impact assessment under Article 35 of Regulation (EU) 2016/679 or Article 27 of Directive (EU) 2016/680, where applicable.

    Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL LAYING DOWN HARMONISED RULES ON ARTIFICIAL INTELLIGENCE (ARTIFICIAL INTELLIGENCE ACT) AND AMENDING CERTAIN UNION LEGISLATIVE ACTS

  45. #2451003

    I gcás nach bhfreagródh soláthar sonraí anaithnidithe nó modhnaithe do riachtanais an athúsáideora, faoi réir aon cheanglais a chomhlíonadh maidir le measúnú tionchair ar chosaint sonraí a dhéanamh agus maidir le dul i gcomhairle leis an údarás maoirseachta de bhun Airteagail 35 agus 36 de Rialachán (AE) 2016/679 agus i gcás inar cinneadh gur rioscaí fíorbheaga na rioscaí do chearta agus leasanna na n-ábhar sonraí, d’fhéadfaí athúsáid na sonraí ar an láthair nó cian-athúsáid na sonraí laistigh de thimpeallacht shlán phróiseála a cheadú.

    Where the provision of anonymised or modified data would not respond to the needs of the re-user, subject to fulfilling any requirements to carry out a data protection impact assessment and consult the supervisory authority pursuant to Articles 35 and 36 of Regulation (EU) 2016/679 and where the risks to the rights and interests of data subjects have been found to be minimal, on-premise or remote re-use of the data within a secure processing environment could be allowed.

    Regulation (EU) 2022/868 of the European Parliament and of the Council of 30 May 2022 on European data governance and amending Regulation (EU) 2018/1724 (Data Governance Act) (Text with EEA relevance)

  46. #2465404

    Maidir le gach tionscadal agus roimh an bpróiseáil, ba cheart do Europol measúnú tionchair ar chosaint sonraí a dhéanamh chun a áirithiú go ndéanfar an ceart chun cosaint sonraí agus cearta agus saoirsí bunúsacha uile ábhar sonraí a urramú go hiomlán.

    For each project, Europol should carry out, prior to the processing, a data protection impact assessment to ensure full respect with the right to data protection and all other fundamental rights and freedoms of data subjects.

    Regulation (EU) 2022/991 of the European Parliament and of the Council of 8 June 2022 amending Regulation (EU) 2016/794, as regards Europol’s cooperation with private parties, the processing of personal data by Europol in support of criminal investigations, and Europol’s role in research and innovation

  47. #2465405

    Ba cheart a áireamh leis an measúnú tionchair ar chosaint sonraí measúnú ar oiriúnacht, riachtanas agus comhréireacht na sonraí pearsanta atá le próiseáil chun cuspóir sonrach an tionscadail, lena n-áirítear an ceanglas maidir le híoslaghdú sonraí agus measúnú ar aon chlaonadh a d’fhéadfadh a bheith sa toradh agus sna sonraí pearsanta atá le próiseáil chun cuspóir sonrach an tionscadail chomh maith leis na bearta atá beartaithe chun aghaidh a thabhairt ar na rioscaí sin.

    The data protection impact assessment should include an assessment of the appropriateness, necessity and proportionality of the personal data to be processed for the specific purpose of the project, including the requirement of data minimisation and an assessment of any potential bias in the outcome and in the personal data to be processed for the specific purpose of the project as well as the measures envisaged to address those risks.

    Regulation (EU) 2022/991 of the European Parliament and of the Council of 8 June 2022 amending Regulation (EU) 2016/794, as regards Europol’s cooperation with private parties, the processing of personal data by Europol in support of criminal investigations, and Europol’s role in research and innovation

  48. #2465829

    comhairle a thabhairt nuair a iarrtar sin maidir leis an measúnú tionchair ar chosaint sonraí de bhun Airteagal 89 de Rialachán (AE) 2018/1725 agus faireachán a dhéanamh ar fheidhmíocht an measúnaithe tionchair ar chosaint sonraí;

    providing advice where requested as regards the data protection impact assessment pursuant to Article 89 of Regulation (EU) 2018/1725 and monitoring the performance of the data protection impact assessment;

    Regulation (EU) 2022/991 of the European Parliament and of the Council of 8 June 2022 amending Regulation (EU) 2016/794, as regards Europol’s cooperation with private parties, the processing of personal data by Europol in support of criminal investigations, and Europol’s role in research and innovation

  49. #2626697

    á chur in iúl gur mór aici go ndearna an Maoirseoir treoir ar an Measúnú Tionchair ar Chosaint Sonraí (DPIA) a chur i dtoll a chéile; ag tabhairt chun suntais go ndearna an Maoirseoir faireachán ar conas atá DPIA á úsáid ag institiúidí an Aontais ó tháinig Rialachán (AE) 2018/1725 i bhfeidhm trí shuirbhé i mí Feabhra 2020, agus gur foilsíodh tuarascáil mar ghníomh iardain ina leith sin i mí Iúil 2020;

    Appreciates that the Supervisor produced a guidance on Data Protection Impact Assessment (DPIA); highlights that the Supervisor has monitored how Union institutions have been using DPIA since the entry into force of Regulation (EU) 2018/1725 through a survey in February 2020, and a report was published as a follow-up in July 2020;

    Resolution (EU) 2022/1710 of the European Parliament of 4 May 2022 with observations forming an integral part of the decision on discharge in respect of the implementation of the general budget of the European Union for the financial year 2020, Section IX – European Data Protection Supervisor

  50. #3048446

    ag tabhairt dá haire go bhfuil iarracht á déanamh ag an Lárionad feabhas a chur ar chibearshlándáil an Lárionaid agus ar chosaint sonraí pearsanta, go háirithe trí chórais nua fíordheimhnithe ilfhachtóiriúla agus trí ghníomhaíochtaí oiliúna arna n-eagrú don fhoireann; ag tabhairt dá haire go bhfuil an Lárionad tiomanta do bheartas cibearshlándála a eisiúint chun obair leantach a dhéanamh ar an Rialachán cibearshlándála atá le teacht; ag tabhairt faoi deara, chun bearta maolaitheacha iomchuí a shainiú chun an leibhéal is airde slándála faisnéise ar líne a sholáthar, go ndearna an Lárionad measúnú tionchair ar chosaint sonraí go luath in 2022;

    Notes that the Centre is pursuing the effort to improve the Centre’s cybersecurity and protection of personal data, especially through new multifactor authentication systems and training activities organised for staff; takes note of the fact that the Centre is committed to issuing a cybersecurity policy to follow up on the forthcoming cybersecurity Regulation; observes that, to define appropriate mitigating measures to provide the highest possible level of online information security, the Centre carried out a data protection impact assessment in early 2022;

    Resolution (EU) 2023/1854 of the European Parliament of 10 May 2023 with observations forming an integral part of the decision on discharge in respect of the implementation of the budget of the European Centre for the Development of Vocational Training (Cedefop) for the financial year 2021