Processing of Personal Data
Definition
Processing of Personal Data can consist of Personal Data being processed for a purpose, involving entities, using technical and organisational measures, subject to applicable Data Privacy Risk, in the context of concrete Data Privacy Rights, and Legal Basis.
According to Article 3 (3) of Regulation (EU) 2018/1725, Processing of Personal Data refers to any operation or set of operations which is performed on Personal Data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Personal data may be processed in many activities which relate to the professional life of a data subject. Examples from within the EU institutions and bodies include: the procedures relating to staff appraisals and to the billing of an office phone number, lists of participants at a meeting, the handling of disciplinary and medical files, as well as compiling and making available on-line a list of officials and their respective field of responsibilities.
Personal data relating to other natural persons than staff may also be processed. Such examples may concern visitors, contractors, petitioners, etc.
