 defines data subjects as “an identified or identifiable natural person.”

By this definition, data subjects are just people. In this context, people about whom your organization collects and processes data, and who have specific data rights and protections.

But what qualifies someone as a data subject under the GDPR?

That part is a little tricky. Several different qualifiers appear throughout the GDPR text—ranging from being an EU citizen to having personal data physically located in the EU.

, including recommendations for how to shore up your compliance stance.

Article 28

Article 30

Article 32

Article 6 

Article 9

Authorized Agents

California Consumer Privacy Act

California Privacy Protection Agency

California Privacy Rights Act

Colorado Privacy Act

Consent 

Dark Patterns

Data Controller

Data Mapping

Data Processor

Data Subject

Data Subject Access Request

Do Not Track

Do not sell/Do not share 

Facebook Limited Data Use

GDPR Personal Data

GDPR Principles

GDPR Rights

General Data Protection Regulation

Global Privacy Control

Gramm-Leach-Bliley Act

HIPAA

LGDP (Brazil's Privacy Law)

Personally Identifiable Information

Pseudonymization

Record of Processing Activities

Schrems II

Tracking Cookies

Utah Consumer Privacy Act 

Verifiable Consumer Request 

Virginia Consumer Data Protection Act

Transcend welcomes Krishna Bhat as Vice President of Product

Transcend offers data governance solutions that help companies achieve privacy compliance through powerful data mapping and data discovery, automated data subject requests, and simple cookie consent, all with industry leading security.

Data Asset Intelligence

Data Discovery & Classification

AI Governance

Autonomous Privacy Operations

Risk Intelligence

Technologies

Products

By Industry

By Regulation

Solutions

Discover

Company

Developers

Data Mapping Calculator

Data Mapping Cost Calculator

Resources

Docs

Log in

Get a demo

Transcend | Data Privacy Infrastructure