GDPR.expert > NORWAY
This page is brought to you by the Norwegian member of the group:
Bull & Co and more specifically the data protection team.
You may click on any Article listed below to access to the relevant comment,
or, if you prefer, you may use the search tools.
Chapter 1 : General provisions
- Artikkel 1 : Subject-matter and objectives
- Artikkel 2 : Material scope
- Artikkel 3 : Territorial scope
- Artikkel 4 : Definitions
Chapter 2 : Principles
- Artikkel 5 : Principles relating to processing of personal data
- Artikkel 6 : Lawfulness of processing
- Artikkel 7 : Conditions for consent
- Artikkel 8 : Conditions applicable to child's consent in relation to information society services
- Artikkel 9 : Processing of special categories of personal data
- Artikkel 10 : Processing of personal data relating to criminal convictions and offences
- Artikkel 11 : Processing not allowing identification
Chapter 3 : Rights of the data subject
Section 1 : Transparency and modalities
Section 2 : Information and access to personal data
- Artikkel 13 : Information to be provided where personal data are collected from the data subject
- Artikkel 14 : . Information to be provided where personal data have not been obtained from the data subject
- Artikkel 15 : Right of access by the data subject
Section 3 : Rectification and erasure
- Artikkel 16 : Right to rectification
- Artikkel 17 : Right to erasure (‘right to be forgotten’)
- Artikkel 18 : Right to restriction of processing
- Artikkel 19 : Notification obligation regarding rectification or erasure of personal data or restriction of processing
- Artikkel 20 : Right to data portability
Section 4 : Right to object and automated individual decision-making
- Artikkel 21 : Right to object
- Artikkel 22 : Automated individual decision-making, including profiling
Section 5 : Restrictions
Chapter 4 : Controller and processor
Section 1 : General obligations
- Artikkel 24 : Responsibility of the controller
- Artikkel 25 : Data protection by design and by default
- Artikkel 26 : Joint controllers
- Artikkel 27 : Representatives of controllers not established in the Union
- Artikkel 28 : Processor
- Artikkel 29 : Processing under the authority of the controller or processor
- Artikkel 30 : Records of processing activities
- Artikkel 31 : Cooperation with the supervisory authority
Section 2 : Security of personal data
- Artikkel 32 : Security of processing
- Artikkel 33 : Notification of a personal data breach to the supervisory authority
- Artikkel 34 : Communication of a personal data breach to the data subject
Section 3 :Data protection impact assessment and prior consultation
Section 4 : Data protection officer
- Artikkel 37 : Designation of the data protection officer
- Artikkel 38 : Position of the data protection officer
- Artikkel 39 : Tasks of the data protection officer
Section 5 : Codes of conduct and certification
- Artikkel 40 : Codes of conduct
- Artikkel 41 : Monitoring of approved codes of conduct
- Artikkel 42 : Certification
- Artikkel 43 : Certification bodies
Chapter 5 : Transfers of personal data to third countries or international organisations
- Artikkel 44 : General principle for transfers
- Artikkel 45 : Transfers on the basis of an adequacy decision
- Artikkel 46 : Transfers subject to appropriate safeguards
- Artikkel 47 : Binding corporate rules
- Artikkel 48 : Transfers or disclosures not authorised by Union law
- Artikkel 49 : Derogations for specific situations
- Artikkel 50 : International cooperation for the protection of personal data
Chapter 6 : Independent supervisory authorities
Section 1 : Independent status
- Artikkel 51 : Supervisory authority
- Artikkel 52 : Independence
- Artikkel 53 : General conditions for the members of the supervisory authority
- Artikkel 54 : Rules on the establishment of the supervisory authority
Section 2 : Competence, tasks and powers
- Artikkel 55 : Competence
- Artikkel 56 : Competence of the lead supervisory authority
- Artikkel 57 : Tasks
- Artikkel 58 : Powers
- Artikkel 59 : Activity reports
Chapter 7 : Cooperation and consistency
Section 1 : Cooperation
- Artikkel 60 : Cooperation between the lead supervisory authority and the other supervisory authorities concerned
- Artikkel 61 : Mutual assistance
- Artikkel 62 : Joint operations of supervisory authorities
Section 2 : Consistency
- Artikkel 63 : Consistency mechanism
- Artikkel 64 : Opinion of the Board
- Artikkel 65 : Dispute resolution by the Board
- Artikkel 66 : Urgency procedure
- Artikkel 67 : Exchange of information
Section 3 : European data protection board
- Artikkel 68 : European Data Protection Board
- Artikkel 69 : Independence
- Artikkel 70 : Tasks of the Board
- Artikkel 71 : Reports
- Artikkel 72 : Procedure
- Artikkel 73 : Chair
- Artikkel 74 : Tasks of the Chair
- Artikkel 75 : Secretariat
- Artikkel 76 : Confidentiality
Chapter 8 : Remedies, liability and penalties
- Artikkel 77 : Right to lodge a complaint with a supervisory authority
- Artikkel 78 : Right to an effective judicial remedy against a supervisory authority
- Artikkel 79 : Right to an effective judicial remedy against a controller or processor
- Artikkel 80 : Representation of data subjects
- Artikkel 81 : Suspension of proceedings
- Artikkel 82 : Right to compensation and liability
- Artikkel 83 : General conditions for imposing administrative fines
- Artikkel 84 : Penalties
Chapter 9 : Provisions relating to specific processing situations
- Artikkel 85 : Processing and freedom of ex
pression and information - Artikkel 86 : Processing and public access to official documents
- Artikkel 87 : Processing of the national identification number
- Artikkel 88 : Processing in the context of employment
- Artikkel 89 : Safeguards and derogations relating to processing for archiving purposes in the public interest, scientific or historical resear
- Artikkel 90 : Obligations of secrecy
- Artikkel 91 : Existing data protection rules of churches and religious associations
Chapter 10 : Delegated acts and implementing acts
Chapter 11 : Final provisions
- Artikkel 94 : Repeal of Directive 95/46/EC
- Artikkel 95 : Relationship with Directive 2002/58/EC
- Artikkel 96 : Relationship with previously concluded Agreements
- Artikkel 97 : Commission reports
- Artikkel 98 : Review of other Union legal acts on data protection
- Artikkel 99 : Entry into force and application