Data Processor and GDPR

Data protection assurance checklists

Before undertaking our Data protection assurance self assessment checklists, you should first determine whether you process personal data as a “controller” or “processor”. The definition of these two terms can be found in our Guide to the GDPR.

In some instances, you will process personal information as both a controller and a processor. When this is the case, we would advise you complete both checklists.

Processors checklist

Designed to help you, as a processor, understand and assess your high level compliance with data protection legislation. Includes the requirements for processors, the rights of individuals and data breaches under the General Data Protection Regulations.

[elementor-template id=”3218″]


  1. David Jones says:

    Downloading is not the same as data transfer; moving or copying data between two storage devices would be data transfer, but receiving data from the Internet is downloading.

  2. Samuel Brownstone says:

    Downloading media files involves the use of linking and framing Internet material, and relates to copyright law. Streaming and downloading can involve making copies of works that infringe on copyrights or other rights, and organizations running such websites may become vicariously liable for copyright infringement by causing others to do so.

  3. Sandy Walters says:

    Websites that offer streaming media or media displayed in-browser, such as YouTube, increasingly place restrictions on the ability of users to save these materials to their computers after they have been received.

  4. Nora Jones says:

    In computer networks, download means to receive data from a remote system, typically a server such as a web server, an FTP server, an email server, or other …

  5. Mike McAlister says:

    Although the series is very well done, it wasn’t what I was hoping it would be. Kudos to the author anyway! I would recommend checking out this author’s other series, very well done as well.

Comments are closed.