Categories
Personal Random

General Data Protection Regulation (GDPR), General Definitions

Personal Data: Broadly defined as any data element(s) that can directly or indirectly identify an individual. Examples include: name, e-mail address, government identifiers (such as a passport or Social Security Number/Social Insurance Number), credit card information, and biometric data (such as fingerprints). It can also include any records associated with or linked to such personal information, such as medical diagnoses, purchase histories, browser cookies, etc. Please note: we are also concerned with data that falls into a more “sensitive” subcategory which requires a higher standard of protection and legal justification to process. These sensitive data elements, which are defined in some laws, include: religious beliefs, political opinions, race, ethnicity, union membership, sexual life, any health-related information including biometric or genetic data, information about criminal/civil offenses, financial information (such as credit card numbers), geo-location information, and any other data which would present a potential risk to security or personal safety if that information was misused.

Third Party: Third party, in relation to Personal Data, means any person other than the individual described by the data (the “Data Subject”), or the Company. For purposes of this survey, Third Parties will usually include vendors, service providers, or any other entity involved in gathering, processing, or storing the data in question, affiliates, and any entity not under your Company’s legal structure. When in doubt, please provide the name of any other entity involved and we can confirm with the legal department the precise status of the business/organizational relationship.

Anonymization/Pseudonymization: Process by which Personal Data is irreversibly altered in such a way that it cannot longer be identified directly or indirectly, or assigned an identifier that is disconnected from the data subject’s identity (such as a random code number)

Biometric Data: A category of Personal Data resulting from specific technical processing relating to the physical, physiological or behavioral characteristics of a natural person, which allow or confirm the unique identification of that natural person, such as facial images or fingerprint data

Health Data: A category of Personal Data related to the physical or mental health of a natural person, including the provision of health care services, which reveal information about his or her health status

Genetic Data: A category of Personal Data relating to the inherited or acquired genetic characteristics of a natural person which give unique information about the physiology or the health of that natural person and which result, in particular, from an analysis of a biological sample from the natural person in question, e.g., DNA reports

Processing: For purposes of this survey, “processing” of data includes any operation or set of operations which is performed on any Personal Data, whether or not by automated means; this can include collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction

Profiling: Any form of automated processing in which Personal Data may be used to evaluate certain personal attributes or behavioral aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation (including creditworthiness), health or lifestyle choices, personal preferences, interests, assessments of personal character or reliability, behavior, location or movements

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.