Abstract

The application of the General Data Protection Regulation will undoubtedly constitute a challenge not only for data controllers and processors, but also for supervisory authorities. The new approach to data protection, that is the risk-based approach providing for the need to analyse the risk which data processing may cause to privacy of data subjects, or the accountability principle, i.e. a completely new principle in the data protection system introduced by the Regulation, will require from controllers special responsibility for all data processing operations and data security. The new tasks and mechanisms aimed at consistent and transparent application of the Regulation in all EU Member States provide the supervisory authorities with tools for increasing the effectiveness of personal data protection activities.