Sensitive data
Sensitive data is a special category of personal data under the GDPR.
The following types of information fall under this definition:
- health data
- racial or ethnic origin
- religious beliefs
- sexual orientation
- trade-union memberships
- political opinions
- biometric data
As a Data controller, you must meet the following conditions in order to process sensitive data:
- You must obtain user consent
- The processing is necessary to protect the vital interests of the data subject when one is unable to give consent
- The data subject has revealed the sensitive data publicly
- It is necessary for claims or in a legal process
- Processing the data for reasons of substantial public interest on the basis of EU or national law
- You are processing the data for preventive or occupational medicine
- The processing is required for public health reasons – preventing epidemics, etc.
For more details we recommend reading this article prepared by the European Commission.
What’s more, such data requires special protection from unauthorized access to ensure that the privacy and security of both individuals and companies is properly guarded. You can read about this here.
February 1, 2023
Meta's ad practices ruled illegal under GDPR: key facts and implications of the decision
The European Data Protection Board (EDPB) ruled that Meta could no longer use contracts as a basis for its behavioral ads. Instead, they should rely on consent as the ground for personal data processing under the EU's general data protection regulation (GDPR). Initially, the Data Protection Commission of Ireland (DPC) had backed Meta's legal argument […]
Read more
January 31, 2023
What is data activation and how does it fit into your data analytics stack
Modern companies employ various technologies for each stage of their data processes. Data ecosystems differ between organizations based on their needs and resources, but every data stack should consist of components used to acquire, integrate and transform the data. Collecting, organizing and managing data are key aspects of every data analytics stack, but how can […]
Read moreOther definitions
Recent posts from Piwik PRO blog
- Meta’s ad practices ruled illegal under GDPR: key facts and implications of the decision
- What is data activation and how does it fit into your data analytics stack
- TTDSG – how to make sure your analytics complies with the German law
- Valuable data collection in a privacy-first world – the experts’ take on marketing technology for 2023
- Privacy compliance in 2023 – the experts’ take on marketing and data protection