Yes, while consent is a primary basis for data processing, the law outlines specific cases where your personal data can be processed without your consent. These exceptions are designed for situations where obtaining consent is not feasible or where processing is necessary for other legal or public interest reasons. Processing without consent is allowed in the following circumstances: 

• To protect your interests: If the processing serves your actual interests but communicating with you is impossible or difficult. This is similar to the “vital interests” basis in other data protection regulations. 

• To fulfill legal or contractual obligations: If the processing is required by another law or is necessary to implement a prior agreement to which you are a party. 

• For public security and judicial needs: If the controller is a public entity and the processing is required for security purposes or to satisfy judicial requirements. 

• For legitimate interests: If the controller has a legitimate interest that necessitates the processing. This is only permissible if it does not harm your rights and interests, and it cannot be used as a basis for processing sensitive data.