Skip main navigation

Principles and lawfulness of processing

What is a legal basis for processing and what are the principles? Watch Trix Mulder explain more.

The GDPR applies to the processing of personal data. Organisations and companies processing personal data for whatever purpose need to follow the rules of the GDPR.

In this course you already met Anna. She is a data subject who can be identified on the basis of her personal data by her doctor. Her doctor is the controller, because he determines the purpose and means of processing (what data needs to be collected and how it needs to be collected). The doctor can also ask a processor to process Anna’s data on his behalf and under his instruction.

Can you think of any other examples where data subjects, data controllers and data processors interact with each other? Post your ideas on the discussion board and take a look at the examples from your fellow learners.

This article is from the free online

Protecting Health Data in the Modern Age: Getting to Grips with the GDPR

Created by
FutureLearn - Learning For Life

Reach your personal and professional goals

Unlock access to hundreds of expert online courses and degrees from top universities and educators to gain accredited qualifications and professional CV-building certificates.

Join over 18 million learners to launch, switch or build upon your career, all at your own pace, across a wide range of topic areas.

Start Learning now