Processing and Processor

by Hannah Grace Holladay / May 16th, 2023

Processing is any action that happens to or uses personal data, including accessing, collection, storage, archiving, reviewing, or destroying.

A processor is the natural or legal entity that processes personal data in support of a controller. Processors cannot process data without the authority of the data controller; therefore, processors must provide controllers with sufficient GDPR compliance guarantees, notification of data breaches and adding/changing of sub-processors.