Article 33 – Notification of a personal data breach to the supervisor authority
Article 25 – Data protection by design and by default
Article 32 & 24 – Security of processing and responsibility of the controller
Article 5 – Principles relating to processing of personal data
Article 39 – Tasks of the data protection controller
Article 48 – Transfer or disclosures not authorized by Union law
Article 35 – Data protection impact assessment