- Personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter referred to as "data subject"). An "identifiable" person is a person who can be identified, either directly or indirectly, by association with an identifier, such as a name, an identification number, or location data, and an online identifier, or with one or more factors specific to the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified.
- Affected person
An individual is “affected” when their personal data is being processed by the controller.
"Processing" is understood to mean the process carried out with or without the help of automated procedures in connection with personal data, such as collecting, recording, organizing, organizing, storing, adapting or changing the reading, retrieval, use, disclosure by transmission, dissemination or any other form of provision, comparison or linking, restriction, deletion or destruction.
- Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of restricting their future processing
"Profiling" means the automated processing of personal data that serves to evaluate, analyze or predict (in particular with regard to work performance, economic situation, health, personal preferences, interests, reliability, behavior, whereabouts or change of location).
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures that ensure that the personal data not assigned to an identified or identifiable natural person.
- Responsible for Processing
The person responsible or responsible for processing is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data. If the purposes and means of this processing are specified by Union law or the law of the Member States, the person responsible or the specific criteria for his naming can be provided for by Union law or the law of the Member States.
Processor is a natural or legal person, public authority, institution or other body that processes personal data on behalf of the person responsible.
Recipient is a natural or legal person, public authority, institution or other body to which personal data is disclosed, regardless of whether it is a third party or not. However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients.
- Third Party
Third party is a natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons who, under the direct responsibility of the controller or the processor, are authorized to process the personal data.
Consent is any expression of will voluntarily given by the data subject in an informed manner and unequivocally for the specific case in the form of a declaration or other clear confirmatory action with which the data subject indicates that they consent to the processing of their personal data is.