Definition: An approach to restricting access to resources based on facts about the resources and facts about the subjects seeking access Commentary:

Definition: Systems that support the verification of the identity of a person in the context of access to application or data resources Commentary:

Definition: Data that is of sufficient quality for its intended use through the perspective of the business process that is using it. Commentary: One aspect of data fit-for-use is that the data is of ...

Definition: Standard Data Transfer Clauses are contractual clauses approved by relevant authorities in a specific jurisdiction, that provide a lawful mechanism for the cross border transfer of Persona...

Definition: An array of technologies that aim to reduce privacy risks associated with data processing. Commentary: Generally, these techniques fall into categories of approaches to protecting data tha...

Definition: An SLO (service level objective) is an agreement within an SLA about a specific metric like uptime or response time. Commentary: An SLA is the formal agreement between data producer and da...

Definition: The sub-set of data that represent the information (format, time) that must be retained for legal, regulatory or operational purposes. Commentary: Examples include trade confirmations, boa...

Definition: The process of converting Personal Data into a form whereby it can no longer be attributed to a specific individual, without the use of additional information, provided that such additiona...

Definition: A DPIA is an assessment carried out prior to any processing of Personal Data which is likely to result in a high risk to the rights and freedoms of Data Subjects. The assessment should typ...

Definition: A data protection officer (DPO) is responsible for overseeing an organization’s compliance with requirements from relevant data protection and/or privacy laws, the appointment of who...