Data Minimisation
   HOME

TheInfoList



Click Here for Items Related To - Data Minimisation
OR:
Data Minimisation on:   [Wikipedia]   [Google]   [Amazon]

Data minimization is the principle of collecting, processing and storing only the necessary amount of
personal information Personal data, also known as personal information or personally identifiable information (PII), is any information related to an identifiable person. The abbreviation PII is widely used in the United States, but the phrase it abbreviates has fou ...
required for a specific purpose. The principle emanates from the realisation that processing unnecessary data is creating unnecessary risks for the data subject without creating any current benefit or value. The risks of processing personal data vary from
identity theft Identity theft, identity piracy or identity infringement occurs when someone uses another's personal identifying information, like their name, identifying number, or credit card number, without their permission, to commit fraud or other crimes. ...
to unreliable inferences resulting in incorrect, wrongful and potentially dangerous decisions. The principle of data minimization is a global, universal principle of data protection, and can thus be found in almost every legal or regulatory text on data protection/privacy.


The data minimization principle in regulatory texts worldwide (selection)

* The data minimization principle is the second of the six fundamental privacy principles set forth in the
General Data Protection Regulation The General Data Protection Regulation (Regulation (EU) 2016/679), abbreviated GDPR, is a European Union regulation on information privacy in the European Union (EU) and the European Economic Area (EEA). The GDPR is an important component of ...
and the UK GDPR. * The
OECD The Organisation for Economic Co-operation and Development (OECD; , OCDE) is an international organization, intergovernmental organization with 38 member countries, founded in 1961 to stimulate economic progress and international trade, wor ...
Privacy Guidelines refer to the data minimization principle as the ''Collection Limitation Principle'' (part two, article 7). * The American Data Privacy and Protection Act (ADPPA), a United States proposed federal online privacy bill that was not enacted included data minimisation as a main principle. * The
APEC Asia-Pacific Economic Cooperation (APEC ) is an inter-governmental forum for 21 member economy , economies in the Pacific Rim that promotes free trade throughout the Asia-Pacific region. Following the success of Association of Southeast Asia ...
Privacy Framework includes the data minimization principle, referred to as the ''Collection Limitation'' principle, as principle III. * The American Privacy Rights Act (APRA), a comprehensive data privacy law proposed in April 2024 in the United States, includes a section on data minimisation. * The Canadian
Personal Information Protection and Electronic Documents Act The ''Personal Information Protection and Electronic Documents Act'' (PIPEDA; ) is a Canadian law relating to data privacy. It governs how private sector organizations collect, use and disclose personal information in the course of commercial bu ...
(PIPEDA) includes the principle as ''Principle 4 - Limiting Collection''.


References

Internet Data security {{Internet-stub de:Datensparsamkeit