As the application of the General Data Protection Regulation (GDPR) gets near, it’s essential that organizations and businesses know the terms that are used. Here are a few of the phrases that you might have seen, with a brief description for each.
- Data Controller – an individual who makes a decision what private data is managed and how it must be managed. This can also pertain to a collection of people. It incorporates folks who work for a company that manages private data.
- Data Processor – a third-party that manages data for a data controller. For example, IT facility providers manage private data for the businesses they provide a facility for.
- Personal Data – any part of data, or group of private data, that can result in the detection of a person. Data can contain items like IP addresses and telephone numbers and real addresses.
- Data Subject – the person whose private data is being managed.
- Right to be forgotten – the right for a person to request that private data is removed. This request doesn’t essentially have to be obeyed if there’s a lawfully convincing reason for the private data to carry on being managed.
- Data Protection Officer (DPO) – the individual accountable for supervising data safety as well as GDPR conformity within a company. All public organizations should have a DPO in place, as do organizations or businesses that carry out large-scale checking of persons and those that manage a large volume of private data which pertains to specific types, as specified by the GDPR.
- Data Protection Authority – the organization accountable for the supervising of data safety, as well as GDPR conformity, in each EU republic. The vital power, which has complete jurisdiction, is the Data Protection Board.
These aren’t all the phrases that you will see cited in GDPR, however, they are a few of the most usual ones.