General Data Protection Regulation (GDPR)

The General Data Protection Regulation (GDPR) is a European Union regulation on Data Protection in the European Union (EU) and the European Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons regarding the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) Economic Area (EEA).

The GDPR is an important component of EU privacy law and human rights law, in particular Article 8(1) of the Charter of Fundamental Rights of the European Union. It also governs the transfer of personal data outside the EU and EEA. The GDPR’s goals are to enhance individuals’ control and rights over their personal information and to simplify the regulations for international business.

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons regarding the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)

https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A02016R0679-20160504

To go in depth

The General Data Protection regulation (GDPR) outlines 6 data protection principles that summarise its many requirements.

Lawfulness, fairness, and transparency You must process personal data lawfully, fairly and in a transparent manner in relation to the data subject.
Purpose limitation You must only collect personal data for a specific, explicit and legitimate purpose. You must clearly state what this purpose is, and only collect data for as long as necessary to complete that purpose.
Data minimisation You must ensure that the personal data you process is adequate, relevant, and limited to what is necessary in relation to your processing purpose.
Accuracy You must take every reasonable step to update or remove data that is inaccurate or incomplete. Individuals have the right to request that you erase or rectify erroneous data that relates to them, and you must do so within a month.
Storage limitation You must delete personal data when you no longer need it. The timescales in most cases aren’t set. They will depend on your business’ circumstances and the reasons why you collect this data.
Integrity and confidentiality You must keep personal data safe and protected against unauthorised or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organisational measures.

The GDPR includes an additional principle, accountability, which acts as an overarching set of requirements related to the other six. By achieving accountability, organisations demonstrate that they have the necessary documentation to prove that they are meeting their compliance requirements.

The GDPR: Understanding the 6 data protection principles

https://www.itgovernance.eu/blog/en/the-gdpr-understanding-the-6-data-protection-principles

back to Glossary

Join our POOL OF STAKEHOLDERS!

Do you want to receive our updates, access information on our activities and events and be in contact with our project?

FACILITATE Updates

FACILITATE Resources

Latest News

For secondary use, trust is the key wordDecember 21, 2023
A technological process with a legal-ethical coreDecember 21, 2023
Demystifying Individual Participant Data ReturnDecember 20, 2023
Expert patients meet FACILITATEDecember 19, 2023

Report

let’s FACILITATE – Year 3 Issue 1

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Performance

Analytics

Others

General Data Protection Regulation (GDPR)

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons regarding the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)

To go in depth

The GDPR: Understanding the 6 data protection principles

Join our POOL OF STAKEHOLDERS!

FACILITATE Updates

FACILITATE Resources

Latest News

Upcoming Events

EMOP 24- European Multicolloquium Congress of Parasitology

CRAACO – Clinical Research as a Care Option

DPHarm – Disruptive Innovations

Report

Quick Links