GDPR stands for the General Data Protection Regulation. GDPR was formed to integrate the data privacy laws across Europe. It was formulated to set strict rules for the companies that collect data about citizens of European Countries. Such companies need to comply with the standards for consumer rights regarding the data. For things like an individual’s IP address, companies need to provide the same kind of protection as they do for name, address, etc.
The purpose of GDPR is to:
- Obtain consent from persons to use their data for certain purposes, like marketing.
- Protecting individuals rights over how their personal data is being processed
Rights of Individuals under GDPR
Under this law, following rights are held by the individual:
- Information Rights: Users hold the right to know how their data is being used.
- Accessing Rights: Individuals hold the right to ask for a copy of the personal data retained about them.
- Rectification Rights: Individuals hold the right to correct, edit or remove any data retained about them at any time.
- Restrict processing Rights: Individuals hold the right to request limited use of their personal data.
- Portability Rights: Individuals hold the right to reuse their personal data for their own purposes.
- Objecting Rights: Individuals hold the right to object use of their data for these purposes.
Definition of “Personal Data” as per GDPR
According to GDPR, any information related to an identified or identifiable human being or any data that is not randomly generated is considered as personal data and comes under the category of protection from the GDPR law
Types of Data Protected by GDPR
- Basic identity data
- Genetic data
- Biometric data
- Racial data
- Political views data
- Web data