Informacijski pooblaščenec Republika Slovenija
    SLO | ENG

The Information Commissioner publishes list of processing activities with mandatory DPIA

+ -

Under Article 35 of the GDPR, the Information Commissioner as Slovenian national Data Processing Authority (DPA) shall establish and make public a list of processing operations which are subject to the requirement for a DPIA. The Information Commissioner published a list of processing activities that considers likely to result in a high risk to the rights and freedoms of data subjects, and which will therefore always require the controller to carry out a DPIA.


The Information Commissioner's document is available in English on the web site: