Glossary (GDPR)

GDPRGeneral Data Protection Regulation, part of the EU data protection reform package, along with the data protection directive for police and criminal justice authorities. The GDPR allows European Union (EU) citizens to better control their personal data. 

Data Subject: Identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person

European Data Subjects: Collection of data regarding citizens of EEA / EU will result in GDPR becoming applicable, regardless of whether the data collector resides in a country within is outside the EEA / EU area

Personally identifiable information (PII): Data that could potentially identify a specific individual. Any information that can be used to distinguish one person from another and can be used for de-anonymizing anonymous data can be considered PII

Personal Data: Any information relating to an identified or identifiable natural person (‘data subject’) such as: Name, Identification number, Location data - such as IP address, an online identifier - such as online nicknames, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person

Data Protection Officer (DPO): An enterprise security leadership role required by the GDPR

Sensitive Personal Data: Sensitive personal data relates to sensitive data pertaining to an data subject's racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person's sex life or sexual orientation

Data Controller: The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data

Data Processor: It means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller

Have more questions? Submit a request

Comments