> Personal Data
Any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person (art. 4 n. 1 GDPR). As a mere example, natural person could be associated to specific online informatic identifiers produced by devices, applications, tools and protocols used, as well as IP addresses, cookies, or identifiers of other nature, as well as rfid tags. Those identifiers could lead, when matched with other univocal identifiers or other data received on servers, to the construction of natural person profiles and even to the identification of a specific natural person (point 30 in the Preambles of the Regulation).
Is the Regulation UE n. 2016/679 – “General Data Protection Regulation”.
The whole set of information given to the Data Subject by the Controller upon the processing deployed by this last.
> Data Subject
The natural person, as defined by Italian and European laws and regulations, whose data refer to.
Is the entity, either natural or legal persona, who determines the purposes and means of the processing of personal data, here included even the security standard adoption.
> Processing of Personal Data
Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.