Chapter 3: The data controller/data processor relationship

Responsibility for compliance with the data processing principles and other aspects of the GDPR lies with the data controller (as defined in the previous chapter).

It is important to note that group-level responsibility for data protection compliance is not an option. Each legal entity – company, public body, institution, partnership or even an unincorporated charity – carries its own, separate responsibility.

The Cloud provider in many cases will be a data processor (also as previously defined), particularly if you store data in the Cloud. However, as discussed in the previous chapter, there may be cases where the Cloud provider is merely a ‘third party’. Either way, if you are the data ...

Get Data Protection and the Cloud - Are you really managing the risks? now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Data Protection and the Cloud - Are you really managing the risks? by Paul Ticher

CHAPTER 3: THE DATA CONTROLLER/DATA PROCESSOR RELATIONSHIP

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly