These guidelines aim at providing practical advice and instructions to EUIs to comply with Regulation 2018/1725 by providing specific guidance on the concepts of controller, processor and joint controllership based on the definitions provided in the Regulation.
The guidelines focus on:
– the concepts of controller, processor and joint controllership;
-the distribution of their obligations and responsibilities, in particular when dealing with the exercise of the rights of data subjects;
-specific case studies on controller-processor, separate controllership and joint controllership situations.