CIPP-E - European Data Protection Law and Regulation - Section 2.3
Understand what appropriate technical and organisational measures are, including encryption and access controls, and know the requirements for breach notification under the GDPR and EDPB guidelines.
Describe the technical and organisational measures required under Article 32 GDPR, including encryption and access controls, as proportionate responses to processing risk. Apply the breach notification timelines and thresholds set by the GDPR and EDPB guidelines to decide when to notify a supervisory authority or affected individuals.
encryptionaccess controlsbreach notificationArticle 32 GDPR
More in this domain
Back to all European Data Protection Law and Regulation objectives, or the CIPP-E cert hub.
Examworthy is not affiliated with or endorsed by IAPP. Original, blueprint-aligned practice material only.