Across
- 1. minimization Collecting only the data necessary for the stated purpose.
- 3. by design Principle of incorporating privacy into systems from the start.
- 6. breach Security incident causing unauthorized access to personal data.
- 7. data Information that identifies or can identify an individual.
- 9. Permission given by a person for processing their personal data.
- 10. Financial or legal sanction for violating data protection rules.
- 12. retention How long personal data are necessarily stored before deletion.
- 15. Any operation performed on personal data (collecting, storing, sharing).
- 16. Blanking certain characters to reduce identifiability.
Down
- 2. Removing identifiers so data can't be linked to a person.
- 4. Entity that determines the purpose and means of processing personal data.
- 5. processor Service providers or third-party that processes personal data.
- 8. basis Justification required to lawfully process personal data.
- 11. Informing authorities or affected individuals about a data breach.
- 13. limitation Rule that data must be collected for a specific, lawful reason.
- 14. to erasure Right to have personal data deleted in certain cases.