that after assessment of the requirements of the applicable data protection law, the security measures are appropriate to protect personal data against accidental or unlawful destruction or accidental loss, alteration, unauthorised disclosure or access, in particular where the processing involves the transmission of data over a network, and against all other unlawful forms of processing, and that these measures ensure a level of security appropriate to the risks presented by the processing and the nature of the data to be protected having regard to the state of the art and the cost of their implementation:
da so po oceni zahtev veljavnega prava o varstvu podatkov varnostni ukrepi ustrezni za varstvo osebnih podatkov pred naključnim ali nezakonitim uničenjem ali naključno izgubo, spreminjanjem, nepooblaščenim posredovanjem ali dostopom, zlasti tam, kjer obdelava vključuje prenos podatkov prek omrežja, ter proti kateri koli drugi nezakoniti obliki obdelave ter da ti ukrepi zagotavljajo raven varnosti, ki ustreza tveganju, ki ga predstavljata obdelava in narava podatkov, ki jih je treba varovati, ob upoštevanju najsodobnejše tehnologije in stroškov njihovega izvajanja;