Data protection can be a complicated industry, particularly for those new to it.
There’s a host of complex terminology out there that might make privacy more confusing than it needs to be. If you can’t recognise certain phrases or are unfamiliar with a number of specific processes or documentations, then how can you be compliant?
To help keep things simple and demystify data protection, here’s our list of common phrases or “buzzwords” you’re likely to come across, with handy definitions.
A simulation of human intelligence exhibited by machines, mostly computer systems, to perform tasks and improve services.
You can learn more about AI and how to responsibly use it by attending our AI training courses.
A senior role responsible for safeguarding people’s health and care data and ensuring it is processed safely and appropriately.
You can learn more about this role and how to perform in it by attending our Caldicott Guardian training course.
Bits of data downloaded onto your device upon visiting a website, used to identify you and track your activity to personalise your browsing experience.
You can get support with your use of cookies from our website compliance services.
The implementation of technology or measures to protect computer systems against risks to data security, such as cyber attacks.
You can learn more about this by attending one of our cybersecurity courses.
The unauthorised disclosure, exposure, or loss of personal data, through either targeted attacks, or accidental errors.
You can get support with managing data breaches through our incident response services.
An agreement laying out clear and defined roles and obligations for controllers and processors to adhere to when processing data.
You can get support with these through our Data Processing Agreement service.
A national UK law complementing the UK GDPR, controlling the use of personal information and providing rights for individuals to request information about themselves.
You can learn more about this by attending one of our data protection training courses.
An assessment to identify and minimise the data protection risks involved in a project, required prior to the commencement of any likely to result in a high risk to individuals.
You can get support with these through our accountability documentation service.
A senior role whose job role is to assist their organisation processes personal data in adherence to all applicable data protection legislation, including DPIAs.
You can outsource this role to us through our Data Protection Officer (DPO) service.
An online self-assessment tool for organisations with access to NHS patient data and systems to measure their compliance against the National Data Guardian’s 10 data security standards.
You can get support with this through our Data Security and Protection Toolkit (DSPT) review service.
An agreement between two or more parties laying out which data can be shared, the responsibilities of the parties, and how it can be used.
You can get support with these through our Data Sharing Agreement service.
A living individual to whom personal data relates, and who is identified or identifiable by such.
You can learn more about this by attending one of our data protection training courses.
A request made either by, or on behalf of, an individual for information that they have the legal right to have access to under GDPR Article 15.
You can get support in responding to these through our subject access request (SAR) services.
A European Union law regulating the use of AI systems, imposing obligations on developers to reduce privacy risks.
You can learn more about AI regulations by attending the IAPP’s AI Governance Professional (AIGP) course.
The right for people to access information held by public authorities.
You can learn more about this by attending one of our Freedom of Information (FOI) training courses.
An Act providing the public with the right of general access to information held by public authorities.
You can learn more about this by attending one of our Freedom of Information (FOI) training courses.
Legislation that gives users more control over their information by providing guidelines and obligations on the collection and processing of personal data. There is the EU Version, and the UK Version of this legislation.
You can learn more about this by attending one of our data protection training courses.
An independent public body responsible for ensuring that UK organisations comply with their data protection obligations.
More information can be found on the ICO’s website.
The transfer of personal data from one country to another.
You can get support with these through our International Data Transfers services.
An independent advisory body for the health and adult social care system that helps to ensure the appropriate and safe use of people’s personal data.
You can learn more about the role of the National Data Guardian on the UK government website.
Information relating to an identified or identifiable natural person.
You can learn more about this by attending one of our data protection training courses.
A statement disclosing how a party gathers and uses a user’s personal data.
You can get support with privacy notices through our website compliance services.
A document used by organisations to record their data processing activities – ways that they have used, stored, and/or shared personal data.
You can get support with these through our accountability documentation service.
Types of personal data deemed particularly sensitive and requiring additional protection – for example, racial or ethnic origin, political opinions, and genetic data.
You can learn more about this by attending one of our data protection training courses.
An assessment required by the GDPR for organisations to make restricted transfers of personal data from the UK to certain countries.
You can get support for this through our Transfer Risk Assessment service.
If you need any support with your data protection obligations, get in touch with our expert team.
Either email us at info@dataprivacyadvisory.com, call us on 0203 3013384, or click below to fill in a contact form.
Want to receive a copy of our monthly Data Protection newsletter and news from the DPAS team?
Helping organisations access the value of their data, create a vision, embed the change and build the future.
Please note all information on this website is for your help and guidance. It should not be regarded as an authoritative or definitive statement of the law.
