11 terms
Any information that can identify a living individual, directly or indirectly.
Personal data must be collected for specified, explicit purposes and not further processed in an incompatible way.
An approach that embeds privacy protections into systems and processes from the start, rather than adding them later.
Processing personal data so it can no longer be attributed to a specific person without additional information kept separately.
Any form of automated processing of personal data to evaluate or predict aspects of a person's behavior, preferences, or characteristics.
A document informing individuals about how their personal data is collected, used, and protected — often used interchangeably with privacy policy.
A cookie that remains on your device until it expires or you manually delete it.
Payment Card Industry Data Security Standard — a set of security requirements for organisations that handle credit card data.
A systematic process for evaluating how a project or system will affect the privacy of individuals.
A public document that explains how an organisation collects, uses, stores, and shares personal data.
A former EU–US data transfer framework invalidated by the Court of Justice of the EU in 2020 — replaced by the Data Privacy Framework.