Learn what personal data is.
Personal data is all information relating to an identified or identifiable natural person.
A natural person can be identified:
- either directly (example: surname and first name)
- or indirectly (example: telephone number, social security number, email or postal address, but also voice and image)
The identification of a natural person can be carried out:
- from a single data (example: name)
- from the cross-referencing of a set of data (example: a woman living at such an address, born on such a day and member of such an association)
Certain categories of data are said to be "sensitive". This is information that reveals the alleged racial or ethnic origin, political opinions, religious or philosophical beliefs or membership in a union, as well as the processing of genetic data, biometric data in order to identify a person physical data only, health data or data on the sexual life or sexual orientation of a natural person. Example: fingerprints.
In the event that sensitive data is involved in the processing, the corresponding guarantees must be provided to guarantee the compliance of the processing with the GDPR:
- express consent of the data subject
- information clearly made public by the data subject
- information necessary for the safeguard of human life
- use justified in the public interest and authorized by data protection authorities
- information concerning members or members of a political, religious, philosophical, political or trade union or organization.