Hi there, can anyone point me in the direction of what part of GDPR/DPA I need to be looking at for guidance on a data controller transferring data to a new data controller please? Essentially a database we host is being transferred to a new data controller to manage and process, we would no longer be the controller, and I want to check how to this correctly. I can only find the need for an Article 14 notice on the other end.
There is a question whether we need an opt in/out option when contacting database users. We are a public body and we currently collect this data under public task, but we would be transferring to a charity so it would be a change in legal basis.
Any help hugely appreciated.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html
Any queries about sending or receiving messages please send to the list owner
[log in to unmask]
Full help Desk - please email [log in to unmask] describing your needs
To receive these emails in HTML format send the command:
SET data-protection HTML to [log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|