1b. Does the processing operation entail blacklists?
Processing operations where personal data relating to criminal convictions and offences, data about unlawful or disruptive behavior or data about bad payment behavior by companies or private individuals are processed and shared with third parties (art. 33 paragraph 4, preamble and under c, of the GDPR Execution Act) (black lists or warning lists, such as those used, for example, by insurers, catering companies, retail companies, telecom providers as well as black lists relating to illegal behavior of employees, for example in healthcare or by employment agencies).