AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Data inventory definition1/15/2024 That includes not just your own website, but also any affiliated URLs or third-party services that may have collected user information on your behalf. One of the first steps in compiling your inventory should be identifying all of the places where personal data lives within your organization. What goes into a personal data inventory? Looked at from that angle, the need for a comprehensive data inventory should be clear. Obviously, that’s a lot of information to sort through. These “special categories of personal data” defined by Article 9 of the GDPR include information such as: The wide reach of the GDPR means that personal data can also include a number of less obvious online identifiers. Under the GDPR, that term covers a broad amount of information, including any material that could be used to identify an individual by: It’s likely that your organization has more personal data than you’re aware of.įor starters, you’ll need to be clear on what constitutes personal data. Putting that into practice takes a bit of effort, though. What is personal data?Īt the highest level, a personal data inventory is exactly what it sounds like: a record of all personally identifiable data housed within your organization and on your website or its affiliates. It will come in especially handy when you start compiling your record of processing activities. Think of it in terms of a retail business: a store that doesn’t keep careful inventory of its stock runs the risk of losing profits, disappointing customers, and possibly even violating regulations.Ĭonsidering that data is often considered a form of currency and is more difficult to track than physical products, it just makes sense to keep a complete account of sensitive information that flows through your business. Required or not, putting together a personal data inventory is an excellent idea for any organization that handles personally identifiable information from consumers. While that’s a large task in itself, it doesn’t cover nearly as much ground as a personal data inventory does. What the GDPR does require is a “record of processing activities,” which accounts for the ways the data collector and data processor handle the processing of personal data, as well as why those materials are processed. E.g., enter a keyword in the Search text box and select the updated filters in the Region, Data Categories, or Site tables.Let’s get this out of the way right off the bat: the EU’s General Data Protection Regulation does not require website owners to compile a personal data inventory. All these searching filters may be combined.You can also search by the region covered by the data asset or by the site that holds the data.Hold the Command/Control key to select multiple items.To search by data category, select one or more categories from the Data Categories table.Enter keywords in the Search text box to search the descriptions of the data assets.A new tab opens with information about the data asset. If you have questions about the inventory or the available data assets, please contact us at To see additional information for a specific data asset, click on the name (shown in blue) of the data asset in the Name column of the table below. The Data Assets Inventory (DAI) provides information about the data assets that can be requested for research projects.
0 Comments
Read More
Leave a Reply. |