1. Task description
If our organization processes personal data based on the consent of the data subject, we must ensure that the conditions for consent are met. The conditions for lawful consent are:
- The controller must be able to demonstrate that the data subject has consented to the processing of his or her personal data
- The request for consent must be clearly separated from other matters in an easily comprehensible form
- The data subject may withdraw her consent at any time and has been instructed to do so before giving her consent
- Withdrawal of consent must be as easy as giving it
The Data Protection Officer may be responsible for assessing the conditions of consent. It is also important to consider, whether consent is generally appropriate as a legal basis for the corresponding processing.