The GDPR uses the term Personal Data in referencing what information is to be protected. Personal Data can be defined as data which can be used by itself, or in concert with other such data items, to identify an individual. Below we have listed the more common Personal Data elements we collect. Please consult our Privacy Notice for additional information on why we collect this data and how it is used.
- email address
- name (first or last or both)
- phone number
- last-4 digits of credit card
- credit card expiry date
- computer name(s)
- drive name(s) assigned to each computer
- TCP/IP address
For items such as the computer name or drive name, it may not be obvious why this is personal data. We include these items as we have seen many people name computers and drives after themselves or others, i.e. "John Smith's Mac."
Personal Data versus Personally Identifiable Information (PII)
PII is a term used primarily in the United States to mean generally the same thing as Personal Data. While these terms are not directly equivalent, for our purposes these terms may be used interchangeably in our documentation.
Articles in this section
- GDPR Overview
- What is Personal Data?
- Data Processor vs Data Controller
- Data Processing Addendum
- Who can make a GDPR request?
- GDPR: How to access and view your personal data
- GDPR: How to object to, or restrict, processing of your personal data
- GDPR: How to withdraw your consent
- GDPR: How to request portability