What is the difference between personal data and privacy-sensitive information?

The GDPR is a hot topic. Due to all messages in the media, many myths circulate about this topic. A frequently-heard comment is: but it is related to privacy, and so it is forbidden under the GDPR anyway, right? To understand correctly what the law requires and what are the reasons for that, you should know what personal data are and how this differs from privacy-sensitive information. We will explain this to you in this blog.


The GDPR is about personal data - What are they?

According to the Dutch Personal Data Protection Act of 2016, personal data means ‘any information relating to an identified or identifiable natural person’. This means that the information is directly about a person, or can be traced back to this person. Think of a person’s name, (email) address, telephone number, passport photo or fingerprints. It must be information of a natural person, so information about deceased persons or organisations does not count as personal data.
There are special personal data as well. These are data that are particularly sensitive, processing them can seriously affect someone’s privacy. These data are additionally protected by law. Examples of this are data regarding someone’s health, race, religion, criminal record, sexual life or membership of a trade union. The Citizen Service Number is a special personal data as well, since it is a unique number that can be traced back to a person.


What about privacy - Which data are considered privacy-sensitive?


But what are privacy-sensitive data? These can be personal data, but there are many more types of information that are considered privacy-sensitive. For example, information on organisations. This information is not about an identifiable natural person, but it is valuable indeed, and you do not want to share it with the whole world. After all, privacy is about ‘deciding yourself who will get which information about you’. And what about sales records or take-over plans: when they fall into the wrong hands, this can be damaging to a company. Even something as simple as a confirmation of a hospital appointment need not be seen by everyone. So you must be very careful with both personal data and privacy-sensitive data.


Privacy and the GDPR - It is all about awareness


The GDPR only deals with personal data. Organisation are now compelled to protect these data demonstrably well and to have control over the protection. However, this does not mean that organisations should solely focus on the protection of personal data. The GDPR has precisely been prepared to raise awareness concerning sensitive data. A lot of information that is not categorised as personal data, should not fall into strange hands either, and therefore must be handled with care. It is crucial that the organisation’s employees have a broad sense of privacy awareness. Do they know the difference between personal data and privacy-sensitive data, and can they recognise such data? Do they know how to protect these data best? Our e-book gives you tips on how to help your employees become aware of safe data-processing.

Download the ebook

RELATED
man_holding_arms_out

CCPA, NTA, DPA, GDPR, WTF?

While the General Data Protection Regulation (GDPR) in the EU has been in place for a few years now, other countries and regions have adopted their own version of enhanced privacy legislation to keep up with the pace of change.  One such region is California. The California Consumer Protection Act (CCPA), is modeled after the GDPR in many respects, but there are also […]

Read more
man_holding_arms_out

CCPA, NTA, DPA, GDPR, WTF?

While the General Data Protection Regulation (GDPR) in the EU has been in place for a few years now, other countries and regions have adopted their own version of enhanced privacy legislation to keep up with the pace of change.  One such region is California. The California Consumer Protection Act (CCPA), is modeled after the GDPR in many respects, but there are also […]

Read more
Doctor_laptop_telemedicine

8 reasons telemedicine is making headlines now

It should come as no surprise that telemedicine, sometimes referred to as telehealth or eHealth, has been featured prominently in the news lately. That’s because healthcare systems and professionals are seeking safe alternatives to provide patient care in the wake of the COVID-19 pandemic. While only a fraction of people worldwide have used telemedicine for […]

Read more
Doctor_laptop_telemedicine

8 reasons telemedicine is making headlines now

It should come as no surprise that telemedicine, sometimes referred to as telehealth or eHealth, has been featured prominently in the news lately. That’s because healthcare systems and professionals are seeking safe alternatives to provide patient care in the wake of the COVID-19 pandemic. While only a fraction of people worldwide have used telemedicine for […]

Read more
ZIVVER_safety_locks

ZIVVER’s secure communication platform is a market leader

When it comes to safeguarding data, you have to first look at the root cause of most breaches. Around the globe, human error is consistently the top cause of data leaks, so it’s important to have a security platform that can effectively tackle this. Many companies claim to offer solutions, few actually deliver on providing top flight security alongside […]

Read more
Data_Breach_vs. Data_leak_explained_zivve_blog_en

Data breach vs. Data leak explained

You probably remember when Facebook's founder Mark Zuckerberg testified before the American Congress and UK lawmakers regarding the Cambridge Analytica data leak scandal. The political consulting firm harvested raw data from 87 million Facebook profiles while working for Donald Trump's presidential campaign in 2016. You might also recall the massive data breach […]

Read more