导航
GDPR > Recital 40
下载PDF

Recital 40

Recital 40

(40) 為合法處理個人資料,個人資料之處理應基於相關資料主體之 同意或源自於法律規定(不論其為本規則或本規則所提及之其他歐盟 法或會員國法規定)之其他合法性基礎,此包括控管者為遵守其法定 義務所必要者,或資料主體作為契約當事人為契約履行所必要者,或 於契約簽署前依據資料主體之要求所為者。

(40) In order for processing to be lawful, personal data should be processed on the basis of the consent of the data subject concerned or some other legitimate basis, laid down by law, either in this Regulation or in other Union or Member State law as referred to in this Regulation, including the necessity for compliance with the legal obligation to which the controller is subject or the necessity for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.