Data subject: A natural person, whose personal data are processed (Article 3 of the Data Protection Act).
The controlling body
The term ‘‘controlling body’’ is governed by Article 24(3) of the Data Protection Act. It represents a public authority that is legally entitled to process personal data necessary for these purposes: prevention, detection and investigation of criminal activities, crime prosecution, enforcement as well as ensuring of the security of the Czech Republic, public order and internal security, which includes searching for people or property.
The protected interest
Pursuant to Article 6(2) of the Data Protection Act, the protected interests include:
(a) defence and security interests of the Czech Republic;
(b) public order and internal security, prevention, detection and investigation of criminal activities, crime prosecution, enforcement, ensuring the security of the Czech Republic as well as public order and internal security;
(c) other important public interest objectives of the European Union or a Member State of the European Union, in particular the important economic or financial interest of the European Union or a Member State of the European Union, including monetary, budgetary or tax issues, financial markets, public health and social security;
(d) protecting the independence of the courts and judges;
(e) preventing, seeking, detecting or prosecuting infringements of the ethical rules of regulated professions;
(f) supervision, control and regulatory functions associated with carrying out official authority duties in the cases referred to in points (a) to (e);
(g) the protection of the rights and freedoms of individuals; and
(h) enforcing private claims.