The harm a person experiences that is caused by the misuse, loss, or improper sharing of their personal-data both deliberate and/or accidental. Harm can be felt physically or emotionally. For example, loss of money through fraud or identity theft, or damage to a person’s reputation and any emotional distress they suffer.
Data Protection Impact Assessments (DPIAs) are an important compliance tool when you are embarking on new processing or making changes to existing processes. In some cases it will a legal requirement that you conduct a DPIA.
You can read more about DPIAs here.
A 'data subject' is the person who is identified (or identifiable) by personal data. So you, me, your family and friends are referred to as 'data subjects' when our personal data is being used by a organisation/entity.
Means a legal right a person* has under our Law. Please see Your Rights for more detail.
*(people are known as 'data subjects' in the Law)