Back to all glossary articles

Data subject

A data subject is one of the three main actors under GDPR . It’s a person whose personal data can be collected. Personal data includes all data that can be used to directly or indirectly identify that person. Data subjects have various rights that they may exercise in respect of Data controller s, including:

  • Right of access (Art. 15)
  • Right to rectification (Art. 16)
  • Right to erasure (also known as the right to be forgotten) (Art. 17)
  • Right to restrict processing (Art. 18)
  • Right to data portability (Art. 20)
  • Right to object to processing (Art. 21)

Read more about the data subjects – 4 steps to determine if your tech partner is GDPR-compliant.

  • first party data

    First-party analytics without consent: Your Digital Omnibus compliance guide

    The Digital Omnibus is the European Commission’s simplification initiative to modernize the EU’s digital rulebook and reduce consent fatigue. The framework would enable first-party analytics without consent when specific criteria are met, ending years of uncertainty about the use of legitimate interest for web statistics.

  • University website personalization: First-party data strategies for student recruitment and retention

    University websites receive millions of visits annually from diverse audiences – prospective students, admitted students weighing their options, current undergraduates, graduate students, parents, alumni, and faculty. Yet most institutions serve identical content to all these visitors, missing critical opportunities to engage each audience with relevant information.

Other definitions

Recent posts from Piwik PRO blog