The supervisory authority can also establish and make public a listing of the type of processing operations for which no information safety impression evaluation is required. The supervisory authority shall communicate those lists to the Board. If the controller has not already communicated the personal information breach to the information […]