ABSTRACT: must Controllers inform processors of the legal bases of processing? Prima facie no: but from a legal and business-strategic perspective the answer is very, very much more complex.
ABSTRACT: A list of current and future "how-to" posts on practical enterprise-specific GDPR compliance using public domain objects, with optional technology anyone can build.
ABSTRACT: Each of the Article 6(1) bases interacts with other Articles and other laws in different ways, and have different hypothetical consequences. For the layperson these interactions/consequences are not always obvious.