Recital 98

Associations or other bodies representing categories of controllers or processors should be encouraged to draw up codes of conduct, within the limits of this Regulation, so as to facilitate the effective application of this Regulation, taking account of the specific characteristics of the processing carried out in certain sectors and the specific needs of micro, small and medium enterprises. In particular, such codes of conduct could calibrate the obligations of controllers and processors, taking into account the risk likely to result from the processing for the rights and freedoms of natural persons.

This recital of the General Data Protection Regulation clarifies article 40 GDPR (Codes of conduct).*

* The reference between articles and recitals is based on the professional assessment of activeMind.legal.

Articles of the GDPR

CHAPTER X – Delegated acts and implementing acts (Art. 92 – 93)