What is a personal data breach?
A personal data breach is a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to personal data transmitted, stored or otherwise processed. Note, it is not to do with purely the loss of personal data, or unauthorised disclosure of personal data, but also unlawful destruction and alteration.
What does it mean that we have 72 hours to report a breach?
When you are data controllerFrom the moment a personal data breach has been confirmed, your organisation has 72 hours to decide (and report) if it presents a high risk of harm to the rights and freedoms of an individual and if so it must be reported ...
What is pseudonymised data?
Pseudonymised data is reversible. Normally what entails is that a name could be replaced with a unique ID, and maybe there's a table somewhere to enable the processor to be able to reverse back again. Now pseudonymised data is still personal data ...
What is anonymised data?
Making GDPR compliance easy with Privasee · Anonymisation Now we are going to now just take a quick dip into what anonymisation is, because when personal is anonymised, it stops being personal data, and this should not be mixed up with ...
How can we protect the customer from sharing more personal data than absolutely necessary?
When requesting personal data on a web-page, a practical way to limit collection is to use drop-down choices and click-boxes rather than to request free-text answers. This protects the customer from sharing too much personal data. Any form of ...
About collection / processing of sensitive data
It is forbidden to ask or save sensitive data unless a data protection impact assessment (DPIA) has been done and shown that it is absolutely necessary, and there are no alternatives. Sensitive data includes: health data, religious and/or political ...