Jargon Explained

We want everyone to engage positively and constructively with data protection rights and responsibilities. To do that, we try and present information and guidance in a relevant and accessible way. Although it is sometimes necessary to use legal terminology, we will use plain English wherever we can. Data protection is for all of us, not just for lawyers.
All
A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z

D

Data harms

The harm a person experiences that is caused by the misuse, loss, or improper sharing of their personal-data both deliberate and/or accidental. Harm can be felt physically or emotionally. For example, loss of money through fraud or identity theft, or damage to a person’s reputation and any emotional distress they suffer.

Data Protection Impact Assessment (DPIA)

Data Protection Impact Assessments (DPIAs) are an important compliance tool when you are embarking on new processing or making changes to existing processes. In some cases it will a legal requirement that you conduct a DPIA.  

You can read more about DPIAs here

Data subject

A 'data subject' is the person who is identified (or identifiable) by personal data. So you, me, your family and friends are referred to as 'data subjects' when our personal data is being used by a organisation/entity. 

Data Subject Access Request

A data subject access request ('DSAR' or simply 'SAR') is when an individual asks a controller for details of what information they have about them and what they are doing with that information. In plain English the person is asking: what do you know about me?; what do you think about me?; what do you think you know about me?; what are you doing with it all?

Read more about the ‘right of access’ here

Data subject rights

Means a legal right a person* has under our Law. Please see Your Rights for more detail.

*(people are known as 'data subjects' in the Law)