§ 21 HDSIG
Processing for Other Purposes
(1)The processing of personal data for a purpose other than that for which the data were collected by public bodies in the performance of their tasks shall be permissible where 1. it is obviously in the interest of the data subject and there is no reason to assume that he or she would refuse consent if aware of the other purpose, 2. the information provided by the data subject must be verified because there are factual indications of its inaccuracy, 3. it is necessary for averting significant disadvantages to the common good or a danger to public security or order, defence or national security, for safeguarding significant interests of the common good or for securing tax or customs revenue, 4. it is necessary for the prosecution of criminal offences or administrative offences, for the enforcement or execution of penalties or measures within the meaning of § 11 para. 1 no. 8 of the Criminal Code or of educational measures or disciplinary measures within the meaning of the Youth Courts Act, or for the enforcement of fines, 5. it is necessary for averting a serious impairment of the rights and freedoms of another person, or 6. it serves the exercise of supervisory and control powers, auditing or the conduct of organisational investigations of the controller; this shall also apply to processing for training and examination purposes by the controller, insofar as the legitimate interests of the data subject do not preclude this.
(2)The processing of special categories of personal data within the meaning of Art. 9 para. 1 of Regulation (EU) No 2016/679 for a purpose other than that for which the data were collected shall be permissible where the conditions of para. 1 and an exception under Art. 9 para. 2 of Regulation (EU) No 2016/679 or under § 20 para. 1 are met.
(3)Personal data that are processed exclusively for the purposes of data protection monitoring, data security or to ensure the proper operation of a data processing system may not be processed for other purposes. zur Einzelansicht § 21