GDPR: Guiding Your Business To Compliance: A practical guide to meeting GDPR regulations. (Edition 2)

substantial public interest,

In exercising his or her right to data portability pursuant to paragraph 1, the data subject shall have the right to have the personal data transmitted directly from one controller to another, where technically feasible.

Where processing is to be carried out on behalf of a controller, the controller shall use only processors providing sufficient guarantees

preventive or occupational medicine,

The GDPR includes provisions to safeguard data subjects against the risk that a potentially damaging decision is taken without human intervention.

legal claims or

public health

archiving purposes in the public interest,

only if the controller or processor has provided appropriate safeguards, and on condition that enforceable data subject rights and effective legal remedies for data subjects are available.