Textbook Key

F: Foundations of Information Privacy and Data Protection

US: U.S. Private-sector Privacy

C: Canadian Privacy

E: European Privacy

G: U.S. Government Privacy

IT: Privacy in Information Technology

M: Privacy Program Management

Find the terms that relate to the program or designation you are studying for by using the tabs below to narrow your search.

Legitimate Processing Criteria

To process data in compliance with EU data protection law, a controller must be able to base the processing activity on at least one legitimate criteria derived from the Data Protection Directive. These criteria are consent, necessity, contract requirement, legal obligation, protection of data subject, public interest and legitimate interests of the controller.

Reference(s) in IAPP Certification Textbooks: E93-100

Associated term(s): Consent, Legitimate Interests of Controller

Associated law(s): Data Protection Directive