Nascleanúint
RGCS (GDPR) > Aithris 84
Íoslódáil PDF

Aithris 84

Recital 84

(84) D’fhonn feabhas a chur ar chomhlíonadh an Rialacháin seo, i gcás inar dócha, leis na hoibríochtaí próiseála, go mbeadh ardriosca ann i dtaca le cearta agus saoirsí na ndaoine nádúrtha, ba cheart don rialaitheoir a bheith freagrach as measúnú tionchair ar chosaint sonraí a dhéanamh chun meastóireacht a dhéanamh go háirithe ar thionscnamh, ar chineál, ar leithleachas agus ar dhéine an riosca sin.

Ba cheart toradh an mheasúnaithe a chur san áireamh agus na bearta iomchuí á gcinneadh, ar bearta iad a dhéantar chun a thaispeáint go gcomhlíonann an phróiseáil a dhéantar ar shonraí pearsanta an Rialachán seo.

I gcás ina léirítear le measúnú tionchair ar chosaint sonraí go mbaineann ardriosca le hoibríochtaí próiseála nach féidir leis an rialaitheoir a mhaolú trí bhearta iomchuí ó thaobh na teicneolaíochta atá ar fáil agus na gcostas a bhaineann leis an gcur chun feidhme, ba cheart dul i gcomhairle leis an údarás maoirseachta sula ndéantar an phróiseáil.

(84) In order to enhance compliance with this Regulation where processing operations are likely to result in a high risk to the rights and freedoms of natural persons, the controller should be responsible for the carrying-out of a data protection impact assessment to evaluate, in particular, the origin, nature, particularity and severity of that risk.

The outcome of the assessment should be taken into account when determining the appropriate measures to be taken in order to demonstrate that the processing of personal data complies with this Regulation.

Where a data-protection impact assessment indicates that processing operations involve a high risk which the controller cannot mitigate by appropriate measures in terms of available technology and costs of implementation, a consultation of the supervisory authority should take place prior to the processing.