Recital 129 Tasks and powers of the supervisory authorities*

1In order to ensure consistent monitoring and enforcement of this Regulation throughout the Union, the supervisory authorities should have in each Member State the same tasks and effective powers, including powers of investigation, corrective powers and sanctions, and authorisation and advisory powers, in particular in cases of complaints from natural persons, and without prejudice to the powers of prosecutorial authorities under Member State law, to bring infringements of this Regulation to the attention of the judicial authorities and engage in legal proceedings. 2Such powers should also include the power to impose a temporary or definitive limitation, including a ban, on processing. 3Member States may specify other tasks related to the protection of personal data under this Regulation. 4The powers of supervisory authorities should be exercised in accordance with appropriate procedural safeguards set out in Union and Member State law, impartially, fairly and within a reasonable time. 5In particular each measure should be appropriate, necessary and proportionate in view of ensuring compliance with this Regulation, taking into account the circumstances of each individual case, respect the right of every person to be heard before any individual measure which would affect him or her adversely is taken and avoid superfluous costs and excessive inconveniences for the persons concerned. 6Investigatory powers as regards access to premises should be exercised in accordance with specific requirements in Member State procedural law, such as the requirement to obtain a prior judicial authorisation. 7Each legally binding measure of the supervisory authority should be in writing, be clear and unambiguous, indicate the supervisory authority which has issued the measure, the date of issue of the measure, bear the signature of the head, or a member of the supervisory authority authorised by him or her, give the reasons for the measure, and refer to the right of an effective remedy. 8This should not preclude additional requirements pursuant to Member State procedural law. 9The adoption of a legally binding decision implies that it may give rise to judicial review in the Member State of the supervisory authority that adopted the decision.

* This title is an unofficial description.

Relevant EU GDPR Articles

All recitals

Need help with GDPR Compliance?
Contact VeraSafe’s Data Protection Experts Today

VeraSafe can help assess your compliance, and operationalize your GDPR compliance, including:

  • Data Mapping / Discovery
  • Gap Analysis
  • Privacy Policies