Category: General Data Protection Regulation (GDPR)

Controller (GDPR)

In the context of the European Union’s new internet regulations (GDPR), a controller is a person, company, or organization tasked engaged in obtaining and processing user data.

Data Privacy Impact Assessment (DPIA)

A Data Protection Impact Assessment (DPIA) is a process to help you identify and minimise the data protection risks of a project. You must do a DPIA for processing that is likely to result in a high risk to individuals. This includes some specified types of processing.

Data Protection Directive (DPD)

The DPD was a set of regulations dictating how personal data was to be processed in the European Union (EU). The DPD was the precursor to the GDPR.

Data Subject

The GDPR defines a data subject as an individual whose online activity is being recorded and analyzed.


The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge.