GDPR-89-02 Requirement 89 — Safeguards and derogations relating to processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes

Ensure technical and organisational measures for data minimisation

Description

Organizations must ensure that technical and organisational measures are in place to ensure respect for the principle of data minimisation when processing for special purposes.

Full Analysis & Evidence Requirements

Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.

Sign In to View

Related Obligations

GDPR-89-01 Data Governance

Implement appropriate safeguards for special purpose processing

GDPR-89-03 Data Governance

Use pseudonymisation where purposes can be fulfilled

GDPR-89-04 Requirement

Use non-identifying processing where purposes can be fulfilled

GDPR-89-05 Requirement

Apply derogations only to specified processing purposes

Map this obligation to your AI systems

ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.

Get Started

Start your compliance assessment

Map obligations to your AI systems, identify gaps, and generate board-ready reports. Plans start at $149/mo.

Get Started