Application areas
Material Scope of Application:
The material scope of application includes any processing of personal data. Therefore, every company is affected as soon as it carries out processing activities. It does not matter whether the data is not, fully or partially processed automatically.
There are isolated exceptions
Personal scope of application:
The regulation applies to anyone who processes personal data or is responsible for the processing. This also applies to the HWR Berlin as a university,.
Spatial scope of application:
The GDPR applies to the processing of data by controllers or processors with an establishment within the EU. In this context, the actual processing does not have to be carried out in the EU. Furthermore, the Regulation applies to the processing of personal data of data subjects located in the EU by processors not located in the EU. This applies when goods or services are offered to the data subjects or the data subjects’ behavior is to be monitored (market research).
The processing of personal data includes:
- the collection,
- the collection,
- the organization
- arranging,
- storage
- adaptation or modification,
- the reading,
- the interrogation,
- the use,
- disclosure by transmission, dissemination or any other form of provision,
- the matching or linking,
- the restriction,
- the deletion or destruction of personal data.