Skip to content
FairityFairity
  • Home
  • Beta version
  • Product
  • Plans & Prices
  • Contact
  • Blog
  • Academy
    • Fairity Academy
    • QUIZ
    • FAQ
    • Glossary
    • Guidance material
  • Sign up / Log in

GLOSSARY

Find out more about GDPR

Here you can improve your vocabulary about GDPR and especially to better understand certain words or grey areas related to data protection

Algorithm

A process or set of rules followed by a computer in performing problem-solving operations.

Application data cache

An application data cache is a data repository on a device. It can, for example, enable a web application to run without an internet connection and improve the performance of the application by enabling faster loading of content.

Browser web storage

Browser web storage enables websites to store data in a browser on a device. When used in “local storage” mode, it enables data to be stored across sessions. This makes data retrievable even after a browser has been closed and reopened. One technology that facilitates web storage is HTML 5.

Collecting data

The collecting of personal data consists, as its name indicates, in the action of gathering personal information on one or more persons by any means whatsoever (handwritten form during a physical meeting, database retrieval…), whatever the purpose.

Consent

Any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which the person, by way, of a statement or clear affirmative action, signifies agreement to the processing of their personal data.

Cookies

A cookie is a small file stored by a website in a user’s terminal (computer, telephone, etc.) and associated with a web domain (i.e. in most cases with all the pages of a single website). This file is automatically sent back during subsequent contacts with the same domain. The aim is to identify the user.

Cookie policy

A policy setting out how you use cookies within your organization.

data BREACH

A breach of security resulting in the destruction, loss, alteration, unauthorised disclosure or accidental or unlawful access of personal data.

Data controller

A data controller is a natural or legal person, public authority, agency or other body, which determines the purposes and means of the processing of personal data: meaning the objective and the way it is carried out.

Data joint controller

There can be one controller as well as several. Indeed, an entity is designated as a joint controller if it and the main controller together determine the purposes and means of processing the same personal data.

Data management 

Data management is a management subject that focuses on the value of data as a digital resource.

Data portability

Data portability refers to the ability to move data from one application, program, computing environment, or cloud service to another.

Data Processing Agreement 

A legally binding agreement in writing between the data controller and data processor that contains the mandatory terms for the processing set out in the GDPR. Often referred to as a DPA.

Data processor

You are a processor if your company process personal data on behalf of and under the authority of a controller. Processors, like controllers, must comply with the GDPR. Like the controller, you can be held liable for non-compliance.

Data protection authorities

DPAs act as independent public authorities that supervise, investigate, and apply data protection laws within the EU. They’re responsible for handling complaints and interpreting EU law. Each EU member state has a separate data protection authority. In Sweden, it is YMI.

Data Protection Officer

A person responsible for managing GDPR compliance within the organisation. The DPO has an information, advisory and monitoring role.

Device

A device is a computer that can be used to access Google services. For example, desktop computers, tablets, smart speakers, and smartphones are all considered devices.

GDPR

The General Data Protection Regulation (GDPR) is the toughest privacy and security law in the world. Though it was drafted and passed by the European Union (EU), it imposes obligations onto organizations anywhere, so long as they target or collect data related to people in the EU. The regulation was put into effect on May 25, 2018. The GDPR will levy harsh fines against those who violate its privacy and security standards, with penalties reaching into the tens of millions of euros.

GDPR compliance

The GPDR compliance process should not be perceived as a technical or legal constraint. It is above all an opportunity to take stock of the use of digital services in the community and to ensure that the protection of personal data has been taken into account.

IMY 

Swedish Authority for Privacy Protection – IMY’s role is to uphold the protection of personal data, monitoring that they are handled correctly and do not fall into the wrong hands.

https://www.imy.se/en/

Opt-in

“Opt in” option means obtaining the consent of the person to whom the advertisement is addressed: if he/she has not said “yes”, it is “no”. In this case, you are not allowed to send them advertising content.

Opt-out

“Opt-out” option is when the person receiving the advertisement has not objected: if they have not said “no”, it is “yes”. If this is the case, you have the green light to share your targeted ads.

Personal data / information

Personal data is any information that relates to an identified or identifiable living individual. Different pieces of information, which collected together can lead to the identification of a particular person, also constitute personal data.

Personal data that has been de-identified, encrypted or pseudonymised but can be used to re-identify a person remains personal data and falls within the scope of the GDPR.

Personal data that has been rendered anonymous in such a way that the individual is not or no longer identifiable is no longer considered personal data. For data to be truly anonymised, the anonymisation must be irreversible.

Examples of personal data:

  • a name and surname
  • a home address
  • an email address such as “name.surname@company.com”
  • an identification card number
  • a location data (for example the location data function on a mobile phone)
  • an Internet Protocol (IP) address
  • a cookie ID
  • the advertising identifier of your phone
  • data held by a hospital or doctor, which could be a symbol that uniquely identifies a person.

Examples of data not considered personal data:

  • a company registration number
  • an email address such as “info@company.com”
  • anonymised data

Personal Data breach

Personal Data breach : A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored, or otherwise processed.

Personal integrity 

Personal integrity is defined as having strong morals or values and following these principles in both word and deed.

Pixel tag

A pixel tag is a type of technology placed on a website or within the body of an email for the purpose of tracking certain activity, such as views of a website or when an email is opened. Pixel tags are often used in combination with cookies.

Privacy notice

A notice providing certain information to data subjects about the use of their personal data, as required by the GDPR.

Public data protection authorities (DPAs)  

Public data protection authorities (DPAs) : DPAs are independent public authorities that supervise, through investigative and corrective powers, the application of the data protection law. They provide expert advice on data protection issues and handle complaints lodged against violations of the General Data Protection Regulation and the relevant national laws. There is one in each EU Member State.

Generally speaking, the main contact point for questions on data protection is the DPA in the EU Member State where your company/organisation is based. However, if your company/organisation processes data in different EU Member States or is part of a group of companies established in different EU Member States, that main contact point may be a DPA in another EU Member State.

Find your National Data Protection Authority online.

Register of data processing

The register of processing activities allows you to identify the data you handle and to have an overview of what you do with personal data. This register is part of the steps to be in compliance with the GDPR. As an inventory and analysis document, it should reflect the reality of your personal data processing and allow you to identify precisely :

  • The stakeholders (representative, subcontractors, co-contractors, etc.) who are involved in the processing of data, 
  • The categories of data processed,
  • What the data is used for, who accesses the data and to whom it is communicated,
  • How long you keep it,
  • How it is secured.

Supervisory authority

GDPR supervisory authorities are public bodies responsible for enforcing compliance with the regulation within their respective countries. They are responsible for monitoring and enforcing the regulations, and have the power to conduct investigations, impose fines, and take other enforcement actions against organizations that violate the GDPR.

In each EU member state there is at least one supervisory authority, which is responsible for supervising the processing of personal data by controllers and processors established in their jurisdiction. They are also responsible for providing guidance and support to organizations operating within the jurisdiction on how to comply with the regulation.

Sensitive personal information

This is a particular category of personal information relating to topics such as confidential medical facts, racial or ethnic origins, political or religious beliefs, or sexuality.

 We simply guide you to follow the GDPR regulations, and build trust with your customers. 

get started Book a meeting with us

RESOURCES

Guidance material
Blog
FAQ

solutions

Product
Plans & Prices

CONTACT

Phone +46 70 669 98 52
Email info@fairity.io

Adress

Pinteg AB
Ideon Science Park
Scheelevägen 15
223 70 Lund, Sweden

 

Privacy policy

FAIRITY is powered by PINTEG
Developed in Sweden

  • LinkedIn profile
  • Instagram profile
  • Facebook profile
  • Sign up / Log in
  • Home
  • Beta version
  • Product
  • Plans & Prices
  • Contact
  • Blog
  • Academy
    • Fairity Academy
    • QUIZ
    • FAQ
    • Glossary
    • Guidance material
  •
We respect your privacy
We use cookies on our website to provide the best experience for you. We use functional cookies and statistical cookies. We will not collect any information about you and not share any information with third party.

Next to “accept” or “deny” all cookies you can also click on “View preferences”' to adjust your own cookie selection. Click on our “Manage Consent” (down to the bottom right) at any time to change your preferences.

You can learn more on our cookie usage and privacy policy by clicking on the links below.
Functional Always active
The functional cookies is needed to make the web site work.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage vendors Read more about these purposes
View preferences
{title} {title} {title}