GDPR Series – Episode 5 : How is sensitive data protected by GDPR?


The Aim of the GDPR is to modernize the EU legal system regarding data, strengthen individuals’ rights and improve the clarity and coherence of the EU rules.

First and foremost, before diving into all the details, here is an overview of what the sensitive personal data is today. Sensitive personal data is called such if it entails: data of racial /ethnical origin, political opinions, religious/philosophical beliefs, trade union membership, data concerning health and data concerning sex life.

Sensitive data protection according to the new GDPR rules will have all those aspects as well as the 2 new added categories: generic data and biometric data.

The definition had been slightly altered and will be from now on: sensitive data concerns any information relating to an identified or identifiable natural person.

The GDPR relies on consent to protect sensitive data. The standards for said consent are becoming higher. Therefore, in general the base lines are about the same, only now the rules are more strict.

Do you want to get more information about GDPR? Read the previous articles.
GDPR Series – Episode 1 : What is GDPR?
GDPR Series – Episode 2 : What are the basic principles of GDPR?
GDPR Series – Episode 3 : What are the 6 possible legal bases?
GDPR Series – Episode 4 : What is the material and territorial application of GDPR?