The GDPR defines personal data as:
"Data from which a living individual can be identified or identifiable (by anyone), whether directly or indirectly, by all means reasonably likely to be used."
By keeping the same, relatively broad definition, the term 'personal data' will now account for a range of personal identifiers, for example:
Additionally, the GDPR will account for developments within technology and in the way organisations collect people's information, as well as how they store and dispose of it.
The GDPR applies to both automated and manual filing systems where, using specific criteria, someone could find personal data. Even personal data stored under a pseudonym can fall under the GDPR umbrella. However, this will often depend upon how hard or easy the pseudonym makes identifying an individual.
In addition to personal data, the GDPR also refers to categories of sensitive personal data. For instance, these categories include:
This data specifically includes genetic data (for medical purposes), as well as bio-metric data (fingerprints, facial recognition etc.).
It is essential for all businesses to review how they handle data, and in particular, how they protect it.
For more information on the basics of GDPR, or a quick guide to compliance, view more of our countdown to GDPR blog posts:
You can book Mackman's bespoke GDPR health check today, contact us on 01787 388038 or email at email@example.com
Our News & Blog
How to create a contact form that converts
New branding and website for Community Land Trust
Mackman Research launches new website