Data Protection Principles
Expert-defined terms from the Professional Certificate in GDPR and AI Data Privacy Compliance course at London School of Planning and Management. Free to read, free to share, paired with a professional course.
Account Data, in the context of GDPR and AI Data Privacy Compliance, refers to p… #
This type of data is considered sensitive and requires special protection. Related terms include Personal Data, User Data, and Sensitive Data.
Accountability, in the context of data protection, refers to the responsibility… #
This includes implementing measures to protect personal data, conducting regular audits, and providing training to employees. Related terms include Compliance, Data Governance, and Responsibility.
Algorithmic Decision #
Making, in the context of AI and data privacy, refers to the use of algorithms to make decisions about individuals, such as credit scoring, insurance risk assessment, and targeted advertising. This type of decision-making can pose risks to individuals, such as bias and discrimination. Related terms include Artificial Intelligence, Machine Learning, and Decision Support Systems.
Anonymization, in the context of data protection, refers to the process of remov… #
This can include techniques such as data masking, pseudonymization, and aggregation. Related terms include Data Protection, Pseudonymization, and De-identification.
Artificial Intelligence, in the context of data privacy, refers to the use of co… #
This can include applications such as machine learning, natural language processing, and computer vision. Related terms include Machine Learning, Deep Learning, and Neural Networks.
Authentication, in the context of data protection, refers to the process of veri… #
This can include techniques such as passwords, biometric authentication, and multi-factor authentication. Related terms include Authorization, Identity Management, and Access Control.
Automated Decision #
Making, in the context of AI and data privacy, refers to the use of algorithms to make decisions about individuals without human intervention. Related terms include Algorithmic Decision-Making, Machine Learning, and Decision Support Systems.
Availability, in the context of data protection, refers to the principle that pe… #
This includes ensuring that data is not deleted, corrupted, or otherwise made unavailable. Related terms include Integrity, Confidentiality, and Data Quality.
Bias, in the context of AI and data privacy, refers to the phenomenon where algo… #
This can occur due to biased training data, flawed algorithms, or inadequate testing. Related terms include Discrimination, Fairness, and Algorithmic Justice.
Bring Your Own Device, in the context of data protection, refers to the practice… #
This can pose risks to data security, such as unauthorized access and data breaches. Related terms include Mobile Device Management, Endpoint Security, and Data Loss Prevention.
Cloud Computing, in the context of data protection, refers to the practice of st… #
Related terms include Cloud Storage, Cloud Security, and Data Center.
Confidentiality, in the context of data protection, refers to the principle that… #
This includes ensuring that data is encrypted, access controls are in place, and employees are trained on data handling procedures. Related terms include Integrity, Availability, and Data Security.
Consent, in the context of data protection, refers to the principle that individ… #
This includes ensuring that consent is informed, specific, and revocable. Related terms include Opt-in, Opt-out, and Data Subject Rights.
Controller, in the context of GDPR, refers to the organization that determines t… #
This includes ensuring that data is processed in accordance with data protection principles and regulations. Related terms include Processor, Data Subject, and Data Protection Officer.
Cookie, in the context of data protection, refers to a small file stored on a us… #
This can include session cookies, persistent cookies, and third-party cookies. Related terms include Tracking, Profiling, and Online Behavioral Advertising.
Data Breach, in the context of data protection, refers to the unauthorized acces… #
This can include incidents such as hacking, phishing, and physical theft. Related terms include Incident Response, Data Loss, and Notification.
Data Center, in the context of data protection, refers to a facility that stores… #
This can include cloud data centers, on-premises data centers, and co-location data centers. Related terms include Cloud Computing, Server Room, and Data Storage.
Data Encryption, in the context of data protection, refers to the process of con… #
This can include techniques such as symmetric encryption, asymmetric encryption, and hash functions. Related terms include Cryptography, Secure Communication, and Data Protection.
Data Governance, in the context of data protection, refers to the set of policie… #
This includes ensuring that data is accurate, complete, and up-to-date. Related terms include Data Quality, Data Management, and Data Stewardship.
Data Loss Prevention, in the context of data protection, refers to the set of te… #
This can include techniques such as data encryption, access controls, and monitoring. Related terms include Data Leakage, Data Theft, and Incident Response.
Data Masking, in the context of data protection, refers to the process of obscur… #
This can include techniques such as data anonymization, pseudonymization, and aggregation. Related terms include Data Anonymization, Data Pseudonymization, and Data Protection.
Data Minimization, in the context of data protection, refers to the principle th… #
This includes ensuring that data is not excessive, redundant, or unnecessary. Related terms include Data Economy, Data Efficiency, and Data Quality.
Data Portability, in the context of GDPR, refers to the right of individuals to… #
This includes ensuring that data is provided in a machine-readable format and that individuals are informed of their rights. Related terms include Data Subject Rights, Data Transfer, and Data Protection.
Data Processor, in the context of GDPR, refers to the organization that processe… #
Related terms include Controller, Data Subject, and Data Protection Officer.
Data Protection by Design, in the context of GDPR, refers to the principle that… #
This includes ensuring that data protection is considered from the outset and that privacy-enhancing technologies are used. Related terms include Privacy-by-Design, Data Protection by Default, and Data Minimization.
Data Protection Impact Assessment, in the context of GDPR, refers to the process… #
This includes identifying and mitigating risks to ensure that data is protected. Related terms include Risk Assessment, Data Protection by Design, and Data Minimization.
Data Protection Officer, in the context of GDPR, refers to the individual respon… #
This includes monitoring data processing, conducting audits, and providing training to employees. Related terms include Compliance Officer, Data Governance, and Data Protection.
Data Quality, in the context of data protection, refers to the principle that pe… #
This includes ensuring that data is not redundant, inconsistent, or inaccurate. Related terms include Data Governance, Data Management, and Data Stewardship.
Data Subject, in the context of GDPR, refers to the individual whose personal da… #
This includes ensuring that individuals are informed of their rights and that their data is protected. Related terms include Controller, Processor, and Data Protection Officer.
Data Subject Rights, in the context of GDPR, refer to the rights of individuals… #
This includes ensuring that individuals are informed of their rights and that their requests are handled promptly. Related terms include Right to Access, Right to Rectification, and Right to Erasure.
Data Transfer, in the context of GDPR, refers to the transfer of personal data f… #
This includes ensuring that data is transferred securely and that individuals are informed of their rights. Related terms include Data Export, Data Import, and Data Protection.
De #
identification, in the context of data protection, refers to the process of removing or obscuring personal data to prevent identification of individuals.
Deep Learning, in the context of AI and data privacy, refers to a type of machin… #
This can include applications such as image recognition, natural language processing, and speech recognition. Related terms include Machine Learning, Artificial Intelligence, and Neural Networks.
Encryption, in the context of data protection, refers to the process of converti… #
Encryption, in the context of data protection, refers to the process of converting plaintext data into unreadable ciphertext to protect it from unauthorized access.
Endpoint Security, in the context of data protection, refers to the set of techn… #
This can include techniques such as antivirus software, firewalls, and intrusion detection systems. Related terms include Network Security, Device Management, and Data Loss Prevention.
Fairness, in the context of AI and data privacy, refers to the principle that al… #
This includes ensuring that algorithms are transparent, explainable, and fair. Related terms include Bias, Discrimination, and Algorithmic Justice.
General Data Protection Regulation, in the context of data protection, refers to… #
Related terms include GDPR, Data Protection, and EU Regulation.
Incident Response, in the context of data protection, refers to the set of proce… #
This includes ensuring that incidents are detected, contained, and remediated promptly. Related terms include Incident Management, Data Breach, and Notification.
Integrity, in the context of data protection, refers to the principle that perso… #
This includes ensuring that data is not modified, deleted, or corrupted without authorization. Related terms include Confidentiality, Availability, and Data Quality.
Internet of Things, in the context of data protection, refers to the network of… #
Related terms include IoT, Connected Devices, and Data Protection.
Machine Learning, in the context of AI and data privacy, refers to the type of a… #
This can include applications such as predictive analytics, recommendation systems, and natural language processing. Related terms include Artificial Intelligence, Deep Learning, and Neural Networks.
Mobile Device Management, in the context of data protection, refers to the set o… #
This can include techniques such as device encryption, access controls, and remote wipe. Related terms include Endpoint Security, Device Security, and Data Loss Prevention.
Natural Language Processing, in the context of AI and data privacy, refers to th… #
This can include applications such as chatbots, voice assistants, and language translation. Related terms include Machine Learning, Artificial Intelligence, and Deep Learning.
Neural Networks, in the context of AI and data privacy, refer to the type of alg… #
This can include applications such as predictive analytics, recommendation systems, and decision support systems. Related terms include Deep Learning, Machine Learning, and Artificial Intelligence.
Notification, in the context of data protection, refers to the process of inform… #
This includes ensuring that notifications are timely, transparent, and informative. Related terms include Incident Response, Data Breach, and Communication.
Online Behavioral Advertising, in the context of data protection, refers to the… #
Related terms include Cookie, Tracking, and Profiling.
Opt #
in, in the context of data protection, refers to the principle that individuals must provide explicit consent for the collection and processing of their personal data. Related terms include Consent, Opt-out, and Data Subject Rights.
Opt #
out, in the context of data protection, refers to the principle that individuals have the right to object to the collection and processing of their personal data. Related terms include Consent, Opt-in, and Data Subject Rights.
Personal Data, in the context of GDPR, refers to any information that relates to… #
This includes names, addresses, phone numbers, and other identifiable information. Related terms include Sensitive Data, Pseudonymous Data, and Anonymized Data.
Privacy by Design, in the context of GDPR, refers to the principle that data pro… #
Related terms include Data Protection by Design, Privacy-by-Default, and Data Minimization.
Privacy Enhancing Technologies, in the context of data protection, refer to the… #
This includes ensuring that data is protected from unauthorized access and that individuals are informed of their rights. Related terms include Data Protection, Privacy-by-Design, and Data Security.
Pseudonymization, in the context of data protection, refers to the process of re… #
This can include techniques such as tokenization, hashing, and encryption. Related terms include Anonymization, Data Masking, and Data Protection.
Right to Access, in the context of GDPR, refers to the right of individuals to a… #
Related terms include Data Subject Rights, Right to Rectification, and Right to Erasure.
Right to Erasure, in the context of GDPR, refers to the right of individuals to… #
Related terms include Data Subject Rights, Right to Access, and Right to Rectification.
Right to Rectification, in the context of GDPR, refers to the right of individua… #
Related terms include Data Subject Rights, Right to Access, and Right to Erasure.
Risk Assessment, in the context of data protection, refers to the process of ide… #
This includes ensuring that risks are assessed, prioritized, and addressed promptly. Related terms include Risk Management, Data Protection Impact Assessment, and Data Security.
Secure Communication, in the context of data protection, refers to the set of te… #
This can include techniques such as encryption, access controls, and secure protocols. Related terms include Encryption, Secure Sockets Layer, and Transport Layer Security.
Security Information and Event Management, in the context of data protection, re… #
This can include techniques such as log analysis, intrusion detection, and incident response. Related terms include Incident Response, Security Monitoring, and Threat Intelligence.
Sensitive Data, in the context of GDPR, refers to personal data that is consider… #
This includes ensuring that sensitive data is protected from unauthorized access and that individuals are informed of their rights. Related terms include Personal Data, Pseudonymous Data, and Anonymized Data.
Server Room, in the context of data protection, refers to a secure room or area… #
This includes ensuring that the server room is protected from unauthorized access and that data is handled securely. Related terms include Data Center, Server Security, and Data Storage.
Supervisory Authority, in the context of GDPR, refers to the independent public… #
This includes ensuring that organizations comply with data protection principles and regulations. Related terms include Data Protection Authority, Regulatory Authority, and Enforcement.
Tokenization, in the context of data protection, refers to the process of replac… #
This can include techniques such as hashing, encryption, and pseudonymization. Related terms include Pseudonymization, Data Masking, and Data Protection.
Training and Awareness, in the context of data protection, refers to the set of… #
This includes ensuring that employees understand their roles and responsibilities in protecting personal data. Related terms include Awareness Program, Training Program, and Data Protection Policy.
Transport Layer Security, in the context of data protection, refers to the crypt… #
This includes ensuring that data is encrypted and protected from unauthorized access. Related terms include Secure Sockets Layer, Encryption, and Secure Communication.
User Data, in the context of data protection, refers to personal data that is co… #
This includes ensuring that user data is protected from unauthorized access and that individuals are informed of their rights.
Vendor Risk Management, in the context of data protection, refers to the set of… #
This includes ensuring that vendors comply with data protection principles and regulations. Related terms include Risk Assessment, Vendor Management, and Third-Party Risk.
Virtual Private Network, in the context of data protection, refers to the set of… #
Related terms include Encryption, Secure Communication, and Remote Access.
Website Security, in the context of data protection, refers to the set of techno… #
Related terms include Web Application Security, Website Vulnerability, and Penetration Testing.