Summary
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Article 42. Certification 1. The member states, the supervisory authorities, the board and the commission |
| 0:11.6 | shall encourage, in particular at union level, the establishment of data protection certification |
| 0:16.9 | mechanisms and of data protection seals and marks for the purpose of demonstrating compliance with |
| 0:22.0 | this regulation of processing operations by controllers and processors. The specific needs of micro, |
| 0:28.4 | small and medium-sized enterprises shall be taken into account. Two. In addition to adherence by |
| 0:34.9 | controllers or processors subject to this regulation, data protection certification mechanisms, seals or marks approved pursuant to paragraph 5 of this article may be established for the purpose of demonstrating the existence of appropriate safeguards provided by controllers or processors that are not subject to this regulation pursuant to Article 3 within the framework of |
| 0:54.8 | personal data transfers to third countries or international organizations under the terms |
| 0:59.5 | referred to in point F of Article 462. Such controllers or processors shall make binding and |
| 1:06.3 | enforceable commitments via contractual or other legally binding instruments, to apply those appropriate |
| 1:12.2 | safeguards, including with regard to the rights of data subjects. |
| 1:16.5 | 3. The certification shall be voluntary and available via a process that is transparent. |
| 1:22.9 | 4. A certification pursuant to this article does not reduce the responsibility of the controller or the processor for compliance with this regulation and is without prejudice to the tasks and powers of the supervisory authorities which are competent pursuant to Article 55 or 56. |
| 1:39.5 | 5. A certification pursuant to this article shall be issued by the certification bodies referred to an Article 43 or by the competent supervisory authority, on the basis of criteria approved by that competent supervisory authority pursuant to Article 583 or by the board pursuant to Article 63. |
| 1:58.5 | Where the criteria are approved by the board, this may result in a common |
| 2:02.4 | certification, the European Data Protection Seal. 6. The controller or processor which |
| 2:09.2 | submits its processing to the certification mechanism shall provide the certification body |
| 2:13.7 | referred to in Article 43, or where applicable, the competent supervisory authority, |
| 2:19.4 | with all information and access to its processing activities which are necessary to conduct the |
| 2:24.0 | certification procedure. |
| 2:26.4 | 7. Certification shall be issued to a controller or processor for a maximum period of three years, |
| 2:32.6 | and may be renewed, under the same conditions, |
| 2:35.5 | provided that the relevant requirements continue to be met. Certification shall be withdrawn, |
... |
Transcript will be available on the free plan in -1462 days. Upgrade to see the full transcript now.
Disclaimer: The podcast and artwork embedded on this page are from Hear GDPR, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Hear GDPR and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.