Close this search box.
AI-based solution designed to automate personal data discovery and classification
Discover personal data across multiple systems in the cloud or on-premise
Harbor cooperation between DPO, Legal Services, IT and Marketing
Turn data subjects request into an automated workflow with a clear insight into data every step of the way
Collaborate with stakeholders and manage DPIA and LIA in real-time with Assessment Automation
Guide your partners trough vendor management process workflow
Identifying the risk from the point of view of Data Subject
Quickly respond, mitigate damage and maintain compliance
Consolidate your data and prioritize your relationship with customers
Privacy portal allows customers to communicate their requests and preferences at any time
Introducing end-to end automation of personal data removal

Latest Blog posts

Learn the terms

General Data Protection Regulation

Here you can find the official content of the Regulation (EU) 2016/679 (General Data Protection Regulation) in the current version. All Articles of the GDPR are linked with suitable recitals.

Latest papers


The data protection principle of lawfulness, fairness, and transparency is introduced in Article 5(1) of the GDPR (General Data Protection Regulation):

“Personal data shall be processed lawfully, fairly and in a transparent manner in relation to the data subject (‘lawfulness, fairness and transparency’).”

This means that the personal data that you are processing has to be done on legal grounds and carried out in a fair and transparent manner towards the data subject.


Lawfulness means that personal data processing is based on lawful grounds. This can include data protection laws and other applicable laws.

Under the GDPR the processing of personal data needs to be based on one of the six lawful bases for processing:

6 Lawful basis for processing:

  • Consent
  • Contract
  • Legal obligation
  • Protection of vital interests
  • Public task
  • Legitimate interest

GDPR requires certain criteria to be met for each of those lawful bases, while Member States maintain the right to apply national instruments if they are consistent with the GDPR. There are special additional conditions for processing sensitive personal data. If you can not find the proper basis, then your processing will be unlawful.

All glossaries
  • All
  • A
  • B
  • C
  • D
  • E
  • F
  • G
  • H
  • I
  • K
  • L
  • M
  • N
  • O
  • P
  • R
  • S
  • T
  • U
  • V
Scroll to Top