导航
GDPR > 第 57 條. 職務
下载PDF

第 57 條 GDPR. 職務

Article 57 GDPR. Tasks

1. 於不損及本規則設立之其他職務之前提下,各監管機關應於其領 域內:

1. Without prejudice to other tasks set out under this Regulation, each supervisory authority shall on its territory:

(a) 監控及執行本規則之適用;

(a) monitor and enforce the application of this Regulation;

(b) 提升公眾對有關處理之風險、規則、保護措施及權利之意識及理 解。專門針對兒童之活動應受特別之注意;

(b) promote public awareness and understanding of the risks, rules, safeguards and rights in relation to processing. Activities addressed specifically to children shall receive specific attention;

(c) 依會員國法建議國會、政府及其他機關或機構,關於涉及處理之 當事人權利及自由保護之立法及行政措施;

(c) advise, in accordance with Member State law, the national parliament, the government, and other institutions and bodies on legislative and administrative measures relating to the protection of natural persons’ rights and freedoms with regard to processing;

(d) 提升控管者及處理者對其於本規則之義務之意識;

(d) promote the awareness of controllers and processors of their obligations under this Regulation;

(e) 基於請求,提供關於本規則下權利行使之資料予任何資料主體, 若適合,與其他會員國之監管機關合作提供;

(e) upon request, provide information to any data subject concerning the exercise of their rights under this Regulation and, if appropriate, cooperate with the supervisory authorities in other Member States to that end;

(f) 處理資料主體或機構、組織或協會依第 80 條之申訴,並適當程度 調查該申訴事項,於合理時間內通知申訴人調查之進度與結果,尤其 於進一步之調查或與其他監管機關之協調為必要時;

(f) handle complaints lodged by a data subject, or by a body, organisation or association in accordance with Article 80, and investigate, to the extent appropriate, the subject matter of the complaint and inform the complainant of the progress and the outcome of the investigation within a reasonable period, in particular if further investigation or coordination with another supervisory authority is necessary;

相关文章

(g) 與其他監管機關合作,包括分享資訊及互助,以確保本規則適用 與執行之一致性;

(g) cooperate with, including sharing information and provide mutual assistance to, other supervisory authorities with a view to ensuring the consistency of application and enforcement of this Regulation;

(h) 執行本規則適用之調查,包括其他監管機關或其他公務機關所提 供資訊之基礎;

(h) conduct investigations on the application of this Regulation, including on the basis of information received from another supervisory authority or other public authority;

(i) 於相關發展影響個人資料之保護時監控之,尤其是資訊與通訊科 技與商業慣例之發展;

(i) monitor relevant developments, insofar as they have an impact on the protection of personal data, in particular the development of information and communication technologies and commercial practices;

(j) 通過第 28 條第 8 項及第 46 條第 2 項第 d 點所稱之定型化契約條 款;

(j) adopt standard contractual clauses referred to in Article 28(8) and in point (d) of Article 46(2);

相关文章

(k) 依第 35 條第 4 項設立並維持與資料保護影響評估之要求相關之 清單;

(k) establish and maintain a list in relation to the requirement for data protection impact assessment pursuant to Article 35(4);

相关文章

(l) 提供第 36 條第 2 項所稱處理活動之建議;

(l) give advice on the processing operations referred to in Article 36(2);

相关文章

(m) 依第 40 條第 1 項鼓勵制定行為守則,並依第 40 條第 5 項提供意 見及核准提供充足保護措施之行為守則;

(m) encourage the drawing up of codes of conduct pursuant to Article 40(1) and provide an opinion and approve such codes of conduct which provide sufficient safeguards, pursuant to Article 40(5);

相关文章

(n) 鼓勵依第 42 條第 1 項設立資料保護認證機制及資料保護標章與 標誌,並依 42 條第 5 項核准認證之標準;

(n) encourage the establishment of data protection certification mechanisms and of data protection seals and marks pursuant to Article 42(1), and approve the criteria of certification pursuant to Article 42(5);

相关文章

(o) 於得適用時,依第 42 條第 7 項定期檢驗頒發之認證;

(o) where applicable, carry out a periodic review of certifications issued in accordance with Article 42(7);

相关文章

(p) 草擬並公布第 41 條監督行為守則之機構及第 43 條認證機構之認 證標準;

(p) draft and publish the requirements for accreditation of a body for monitoring codes of conduct pursuant to Article 41 and of a certification body pursuant to Article 43;

相关文章

(q) 進行第 41 條監督行為守則之機構及第 43 條認證機構之認證;

(q) conduct the accreditation of a body for monitoring codes of conduct pursuant to Article 41 and of a certification body pursuant to Article 43;

相关文章

(r) 授權第 46 條第 3 項所稱之契約條款及規定;

(r) authorise contractual clauses and provisions referred to in Article 46(3);

相关文章

(s) 依第 47 條核准有拘束力之企業守則;

(s) approve binding corporate rules pursuant to Article 47;

相关文章

(t) 協助委員會之活動;

(t) contribute to the activities of the Board;

(u) 依第 58 條第 2 項保存違反規則及採取措施之內部紀錄;及

(u) keep internal records of infringements of this Regulation and of measures taken in accordance with Article 58(2); and

相关文章

(v) 完成任何與個人資料保護相關之職務。

(v) fulfil any other tasks related to the protection of personal data.

2. 各監管機關應透過諸如亦得單以電子方式完成而不須其他溝通方 式之申訴提交表格等方式,促進第 1 項第 f 點之申訴提交。

2. Each supervisory authority shall facilitate the submission of complaints referred to in point (f) of paragraph 1 by measures such as a complaint submission form which can also be completed electronically, without excluding other means of communication.

3. 各監管機關之職務行使不應向資料主體收取費用,且於得適用時, 亦不應向資料保護員收取之。

3. The performance of the tasks of each supervisory authority shall be free of charge for the data subject and, where applicable, for the data protection officer.

4. 於請求顯無理由或過量時,尤其於重複情形,監管機關得基於行 政成本收取合理費用,或拒絕處理請求。監管機關應負請求顯無理由 或請求過量之舉證責任。

4. Where requests are manifestly unfounded or excessive, in particular because of their repetitive character, the supervisory authority may charge a reasonable fee based on administrative costs, or refuse to act on the request. The supervisory authority shall bear the burden of demonstrating the manifestly unfounded or excessive character of the request.

献技 发表评论
献技

(123) 監管機關應依照本規則監督各條款之適用,並致力於確保本規 則在全歐盟適用之一致性,以保護當事人關於其個人資料處理,並促 進個人資料在歐洲市場之自由流通。為達該目的,監管機關相互間及 其與執委會間應彼此合作,無須會員國間簽訂互助或該等合作條款之 任何協議。

(123) The supervisory authorities should monitor the application of the provisions pursuant to this Regulation and contribute to its consistent application throughout the Union, in order to protect natural persons in relation to the processing of their personal data and to facilitate the free flow of personal data within the internal market. For that purpose, the supervisory authorities should cooperate with each other and with the Commission, without the need for any agreement between Member States on the provision of mutual assistance or on such cooperation.

(132) 監管機關對公眾所為喚起公眾意識之活動應包括針對控管者或處理者之特定措施,包括微型及中小型企業以及個人,特別是於教 育之脈絡下。

(132) Awareness-raising activities by supervisory authorities addressed to the public should include specific measures directed at controllers and processors, including micro, small and medium-sized enterprises, as well as natural persons in particular in the educational context.

发表评论