Data Controller
In the context of GDPR, the data controller determines the "how" and "why" of data processing, setting the objectives and overseeing its execution. They can either process the data themselves or appoint a trusted third-party data processor.