“Controller” is a term defined in Art. 4 para 7 of the EU General Data Protection Regulation (GDPR). It refers to the natural or legal person, public authority, agency or other body which, alone or jointly with others (i.e. “joint controllership”), determines the purposes and means of the processing of personal data.