Data_minimization

Data minimization

Data minimization

Processing only necessary personal information

Data minimization is the principle of collecting, processing and storing only the necessary amount of personal information required for a specific purpose. The principle emanates from the realisation that processing unnecessary data is creating unnecessary risks for the data subject without creating any current benefit or value. The risks of processing personal data vary from identity theft to unreliable inferences resulting in incorrect, wrongful and potentially dangerous decisions.

The principle of data minimization is a global, universal principle of data protection, and can thus be found in almost every legal or regulatory text on data protection/privacy.

The data minimization principle in regulatory texts worldwide (selection)

References

  1. [1]
    "EUR-Lex โ€“ 32016R0679 โ€“ EN โ€“ EUR-Lex". eur-lex.europa.eu.
  2. [2]
    "Principle (c): Data Minimisation". ico.org.uk.
  3. [3]
    "OECD Privacy Guidelines".
  4. [4]
    Dumiak, Matt (June 24, 2022). "Federal Privacy Bill: Breaking Down the ADPPA". JD Supra. Archived from the original on June 25, 2022. Retrieved July 30, 2022.
  5. [5]
    "APEC Privacy Framework (2015)".
  6. [6]
    "American Privacy Rights Act Section-by-Section Summary by the United States Senate Committee on Commerce, Science, & Transportation".
  7. [7]
    "Personal Information Protection and Electronic Documents Act".
  8. [8]
    "PIPEDA fair information principles".


Stub icon

This Internet-related article is a stub. You can help Wikipedia by expanding it.
Share this article:

This article uses material from the Wikipedia article Data_minimization, and is written by contributors. Text is available under a CC BY-SA 4.0 International License; additional terms may apply. Images, videos and audio are available under their respective licenses.