Recital 128

The rules on the lead supervisory authority and the one-stop-shop mechanism should not apply where the processing is carried out by public authorities or private bodies in the public interest. In such cases the only supervisory authority competent to exercise the powers conferred to it in accordance with this Regulation should be the supervisory authority of the Member State where the public authority or private body is established.

This recital of the General Data Protection Regulation clarifies article 56 GDPR (Competence of the lead supervisory authority) and article 60 GDPR (Cooperation between the lead supervisory authority and the other supervisory authorities concerned).*

* The reference between articles and recitals is based on the professional assessment of activeMind.legal.

Articles of the GDPR

CHAPTER X – Delegated acts and implementing acts (Art. 92 – 93)