/Docs/G/EU-GDPR-Law-CmA/Sec/Article/24.md
  Source views: Source JSON(ish) on GitHub (VSCode)   Doc views: Document (&k=r00t): Visual Print Technical: OpenParameters Xray
Ti = Article 24 - Responsibility of the {_controller}
1.sec = Taking into account the nature, scope, context and purposes of {_processing} as well as the risks of varying likelihood and severity for the rights and freedoms of {_natural_persons}, the {_controller} shall implement appropriate technical and organisational measures to ensure and to be able to demonstrate that {_processing} is performed in accordance with this Regulation. Those measures shall be reviewed and updated where necessary.
2.sec = Where proportionate in relation to {_processing} activities, the measures referred to in paragraph 1 shall include the implementation of appropriate data protection policies by the {_controller}.
3.sec = Adherence to approved codes of conduct as referred to in Article 40 or approved certification mechanisms as referred to in Article 42 may be used as an element by which to demonstrate compliance with the obligations of the {_controller}.
= [G/Z/ol/s3]