What is a privacy risk?

What is a privacy risk?


Privacy risk is the potential harm to the rights and freedoms of the natural person. Now, if you come from an IT background and have an IT hat you can be forgiven in thinking that privacy risk is about a personal data breach or about the fact of protecting the organisations personal data. But it is not, it is do with the harm to the rights and freedoms of the natural person. It is really important that this is not to do with loss of data, we are looking here at human rights. If personal data is lost it can present a risk to an individual's reputation and this is not physical harm, this is some kind of psychological harm and can impact their rights and freedoms.

What is not explained well in this recording, is that it is any risk of harm, both physical and other harms.
    • Related Articles

    • What does it mean that we have 72 hours to report a breach?

      When you are data controllerFrom the moment a personal data breach has been confirmed, your organisation has 72 hours to decide (and report) if it presents a high risk of harm to the rights and freedoms of an individual and if so it must be reported ...
    • What is Privacy by Design?

      Privacy by design principles were created by Ann Cavoukian in the 1990s which became an international standard in 2010. The main focus talked about today is privacy as a default setting and embedded privacy. ENISA has created a document which gives ...
    • How can we be a joint-controller?

      If 2 or more controllers have a say in the purpose and means on the processing of personal data they are potentially joint controllers.   If there is a case of a joint controller situation then it needs to be clear in a contract between the ...
    • What is consent?

      Making GDPR compliance easy with Privasee · Consent Types In order for consent to be legal it either needs to be unambiguous consent or explicit consent.  Unambiguous consent is defined in the GDPR as similar to implicit consent but strengthened by a ...
    • 5 Simple Rules on the use of personal data in your daily work, to achieve compliance with GDPR

      Use GDPR privacy awareness training and policy documents to help you to build awareness on these 5 simple rules for working with personal data across your organisation! 1. Have a SPECIFIC PURPOSE All processing/use of personal data in your work must ...