Jump to Navigation


Glossary beginning with D

Click one of the letters above to go to the page of all terms beginning with that letter.
Data Controller

The natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of processing are determined by national or Community laws or regulations, the controller or the specific criteria for his nomination may be designated by national or Community law.

Data Integrity

The property that data has not been changed, destroyed, or lost in an unauthorized or accidental manner.

Data Processor

A natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller.

Data Protection Agency (DPA)

see Data Protection Authority

Data Protection Authority (DPA)

A data protection authority is an independent body which is in charge of: monitoring the processing of personal data within its jurisdiction (country, region or international organization); providing advice to the competent bodies with regard to legislative and administrative measures relating to the processing of personal data; hearing complaints lodged by citizens with regard to the protection of their data protection rights. According to Article 28 of Directive 95/46/EC, each Member State shall establish in its territory at least one data protection authority, which shall be endowed with investigative powers (such as access to data, collection of information, etc.), effective powers of intervention (power to order the erasure of data, to impose a ban on a processing, etc.), and the power to start legal proceedings when data protection law has been violated.

Data Protection Impact Assessment (DPIA)

A systematic process for evaluating the potential impact of risks where processing operations are likely to present specific risks to the rights and freedoms of data subjects by virtue of their nature, their scope or their purposes to be carried out by the controller or the processor acting on the controller?s behalf.

Data Protection Officer (DPO)

Each Community institution and body shall have a data protection officer (DPO). The DPO shall ensure the internal application of the Regulation and that the rights and freedoms of the data subjects are not likely to be adversely affected by the processing operations. The DPO shall also keep a register of processing operations that have been notified by the controllers of the institution or body where he or she works.

Data Security

Protection of data from unauthorized (accidental or intentional) modification, destruction, or disclosure.

Data Subject

An identified or identifiable natural person ('data subject') to whom ?personal data? relate to; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity;

Data Subject Consent

Any freely given specific and informed indication of his wishes by which the data subject signifies his agreement to personal data relating to him being processed.

Data Transfer

Data transfer refers to the transmission / communication of data to a recipient in whatever way.

Directive 2009/136/EC

Directive 2009/136/EC of the European Parliament and of the Council of 25 November 2009 amending Directive 2002/22/EC on universal service and users? rights relating to electronic communications networks and services, Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector and Regulation (EC) No 2006/2004 on cooperation between national authorities responsible for the enforcement of consumer protection laws.

Directive 95/46/EC

European Parliament and Council Directive 95/46/EC of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data. This directive defines the overall concept of data protection in the Europe. Under this directive, individual personal data has to be collected openly and fairly with a clear explanation of the purpose for its collection.

Due Process

A moral claim to provide fair and equal treatment, and incorporates rights to full information, the right to be heard, to ask questions and receive answers, and the right to redress.