Browse Definitions :

BACKGROUND IMAGE: stock.adobe.com

This content is part of the Essential Guide: GDPR compliance requirements for CRM managers
Definition

EU Data Protection Directive (Directive 95/46/EC)

EU Data Protection Directive (also known as Directive 95/46/EC) is a regulation adopted by the European Union to protect the privacy and protection of all personal data collected for or about citizens of the EU, especially as it relates to processing, using or exchanging such data.

The EU Data Protection Directive is based on recommendations first proposed by the Organisation for Economic Co-operation and Development's (OECD). These recommendations are founded on seven principles:

  • Subjects whose data is being collected should be given notice of such collection.
  • Subjects whose personal data is being collected should be informed as to the party or parties collecting such data.
  • Once collected, personal data should be kept safe and secure from potential abuse, theft, or loss.
  • Personal data should not be disclosed or shared with third parties without consent from its subject(s).
  • Subjects should granted access to their personal data and allowed to correct any inaccuracies.
  • Data collected should be used only for stated purpose(s) and for no other purposes.
  • Subjects should be able to hold personal data collectors accountable for adhering to all seven of these principles.

The Data Protection Directive is superseded by the General Data Protection Regulation (GDPR), which was adopted by the European Parliament and European Council in April 2016 and will become enforceable in May 2018. The new regulation expands upon previous requirements for collecting, storing and sharing personal data and requires the subject's consent to be given explicitly and not checked off by default. 

This was last updated in January 2008

Continue Reading About EU Data Protection Directive (Directive 95/46/EC)

Dig Deeper on Data and data management

Join the conversation

2 comments

Send me notifications when other members comment.

Please create a username to comment.

Why did the EU take so long to update data protection laws when the world has changed so much?
Cancel
European laws have no bearing on US law. This is being promoted by security companies to generate revenue for new services and products. The only companies that can be penalized for failure to comply are companies with a global footprint in Europe or companies that exist in Europe.
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • quantum key distribution (QKD)

    Quantum key distribution (QKD) is a secure communication method for exchanging encryption keys only known between shared parties.

  • identity theft

    Identity theft, also known as identity fraud, is a crime in which an imposter obtains key pieces of personally identifiable ...

  • cybercrime

    Cybercrime is any criminal activity that involves a computer, networked device or a network.

SearchHealthIT

SearchDisasterRecovery

  • disaster recovery plan (DRP)

    A disaster recovery plan (DRP) is a documented, structured approach that describes how an organization can quickly resume work ...

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

SearchStorage

  • logical unit number (LUN)

    A logical unit number (LUN) is a unique identifier for designating an individual or collection of physical or virtual storage ...

  • NVMe over Fabrics (NVMe-oF)

    NVMe over Fabrics, also known as NVMe-oF and non-volatile memory express over fabrics, is a protocol specification designed to ...

  • CIFS (Common Internet File System)

    CIFS (Common Internet File System) is a protocol that gained popularity around the year 2000, as vendors worked to establish an ...

Close