# GDPR key concepts

- [Personal data](/en/le-rgpd-en-bref/rgpd-en-bref/donnee-personnelle.md): Learn what personal data is.
- [Record of processing activities (ROPA)](/en/le-rgpd-en-bref/rgpd-en-bref/registre-de-traitement.md): Learn what a record of data processing activities is.
- [Privacy impact assessment](/en/le-rgpd-en-bref/rgpd-en-bref/privacy-impact-assessment.md): Learn what is a privacy impact assessment
- [Data retention period](/en/le-rgpd-en-bref/rgpd-en-bref/data-retention-period.md): Learn what shelf life is.
- [Data Subject Rights (DSR)](/en/le-rgpd-en-bref/rgpd-en-bref/droits-des-personnes.md): Find out about the different rights introduced by the GDPR.
- [Privacy by design and by default](/en/le-rgpd-en-bref/rgpd-en-bref/confidentialite-des-la-conception-et-par-defaut.md): Learn what privacy by design and privacy by default mean and how to apply them in Dastra.
- [Security measures](/en/le-rgpd-en-bref/rgpd-en-bref/mesures-de-securite.md): Discover what's new in terms of security with the GDPR.
- [Data breach notifications](/en/le-rgpd-en-bref/rgpd-en-bref/violations-de-donnees.md): Learn how to track data breach notifications.