← Back to Glossary

Legal Ground / Basis

The GDPR specifies six legal grounds (or legal basis) that allow a Controller (typically an organization) to process personal data. The applicable legal ground depends on the type of personal data and the type of processing. The six legal bases include:

Consent
Necessary for the performance of a contract
Legal obligation
Vital interest of the data subject or another person
A task carried out in public interest
Legitimate interest of the controller

Check out our latest blog article

Data Subject Access Requests

Learn about Data Subject Access Requests (DSARs). Discover the right, request details, and response strategies for individuals seeking access to their personal data.

Looking for more info?

Contact us via form, phone, or email to discuss projects, partnerships, custom development, custom pricing or any other question you might have for us.

Privacy

Assessments

Awareness

Services

Industries

Content Hub

Tools

Latest from our blog

RESPONSUM Strengthens Market Presence with Acquisition of RealCGR’s GDPR Division

Vendor Assessments: Choosing a Processor

Mastering Vendor Risk Management