1. Personal Data, Non-personal Data, Anonymised Data, Pseudonymised Data, De-identified Data
- Author
-
Claudia Irti
- Subjects
Personal data ,Scope (project management) ,Computer science ,Settore IUS/01 - Diritto Privato ,Data Protection Act 1998 ,Settore IUS/02 - Diritto Privato Comparato ,Personal data, non personal data, anonymised data, 3. Pseudonymised data, de-identified data ,3. Pseudonymised data ,non personal data ,Data science ,anonymised data ,de-identified data - Abstract
The primary scope of application of the General Data Protection Regulation—Regulation (UE) 2016/679 (GDPR)—is ‘personal data’; ‘data’ that is not personal data can be freely processed within the legal framework of the Regulation (UE) 2018/1807. Although the European data protection framework recognises these two categories of data—‘personal data’ and ‘non-personal data’—reality reveals ‘a lot in between’ the opposite endpoints. There are accordingly considerable complications in drawing the boundaries between personal and non-personal data. In this article, we will review some of the main issues related to the usual classification of data as personal, anonymous, pseudonymous, de-identified data, and suggest that the most realistic way to approach the different problems is to recognise the dynamic nature of the data.
- Published
- 2021
- Full Text
- View/download PDF