Personal Data Flashcards
What is personal data (include Article)?
Personal Data (Art 4(1)): 1. Any information 2. relating to 3. an identified or identifiable 4. natural person
Note: All must be met (but doesn’t have to be in that order)
What are various examples of personal data? What happens with the aggregation of these elements?
Gender, age, DOB, marital status, citizenship, veteran status, languages spoken
Physical addresses, internal ID numbers, government issued ID numbers, etc.
Aggregation could make a person identifiable
What is anonymous data? Relation to GDPR?
Data that is not related to an identified or identifiable person and has been rendered unidentifiable
Not protected by GDPR
What is pseudonymous data? Relation to GDPR?
Not fully anonymous
Went through process that detached the aspects of the data attributed to a specific individual (like creating an alias for a person’s name), yet the personal data is still retrievable
Typically a security measure
Subject to EU laws
What does the GDPR say about processing special categories of personal data (include article)? What are the special categories?
Article 9(1)
Prohibits processing of personal data (3 categories)
- revealing:
- Racial or ethnic origin
- Political opinions
- Religious or philosophical beliefs
- Trade-union membership
2.
-Genetic data or biometric data for the purpose of uniquely identifying a natural person
3.
-Data concerning health or data concerning a person’s sex life or sexual orientation
What is unique about personal data related to criminal convictions and offenses (include GDPR article)?
Article 10
Processing of such personal data shall be carried out only under the control of official authority or when the processing is authorized by Union or Member State law and there are appropriate
safeguards for the rights and freedoms of data subjects
Any comprehensive register of criminal convictions shall be kept only under the control of official authority