Is your shoe size categorized as personal data? What are the consequences of not complying with the GDPR’s requirements? Certainly, there are many questions and it can be difficult to get an overview of what the recently enforced GDPR is actually all about.
For this purpose, we have gathered the most important points on this page.
Everyone handles personal data…
“Personal data is information that relates to an identified or identifiable individual.”
…in other words:
If any piece of information is displayed about a person or leads to a person, then it is considered personal data.
But personal data is a lot of things…
There are different types of personal data
As you can see from the example above, personal data can be many things and there are different types of personal data.
Therefore, personal data is generally divided into two different types.
Regular personal data
These do not necessarily require permission to be handled, but you still need to be considerate and use your common sense.
Special categories of personal data
These are sensitive personal data and any handling requires special attention – and often permission.
Consider personal data something you borrow
Imagine that you borrow a friends car. In this case, you would naturally make sure:
Handle personal data in the same way…
We at CyberPilot offer awareness training through our e-learning platform, where we provide courses on a wide range of topics from personal data to phishing.
The new regulation on personal data protection and privacy was enforced on May 25th, 2018 and more companies are subject to this regulation than you might think. This flowchart helps you determine whether GDPR and its potential sanctions apply to your business.
Sometimes it is due to hackers…
But more often it is because:
The risk of security incidents can be reduced by technical tools:
… But that is only half the battle.
Challenges that cannot be tackled by technical tools:
Humans are the greatest security threat. In other words, this is not only a task for IT!
We have created a complete and practical guide on how to train your employees in cyber security and the GDPR.
The e-book provides access to a variety of valuable templates and tools, in order for you to get started with training your employees.