What is personal data?
“Personal data” is a term defined in the General Data Protection Regulation (GDPR). The GDPR is the EU-wide regulation about data privacy. Broadly speaking, “personal data” means information that can identify an individual person.
This includes information that identifies someone directly or when combined with other data. Contact information, like your name or email address, is a common example of personal data. But, personal data can also include technical information, like account information and IP-addresses.
- Details about the company
- What kinds of personal data you collect
- Why you collect personal data
- Which third parties you receive data from and send data to
- Where you keep personal data and how you keep it secure
- How long you keep personal data
- Details about automated decision-making and profiling
- What rights individuals have under data protection laws
- How to contact you
(Keep in mind this is not a full list of requirements, just some of the most important ones.)
Consequences of non-compliance