isikuandmete

Isikuandmete, or personal data, refers to any information relating to an identified or identifiable natural person. This includes direct identifiers such as name, address, telephone number, and national ID, as well as indirect identifiers like online identifiers, location data, or a combination of data that could reveal a person’s identity. Data about an individual’s health, genetic or biometric data, political opinions, religion, or sexual orientation are considered more sensitive and require stronger protection. Data that has been truly anonymized is not classified as isikuandmed.

In the European Union and Estonia, isikuandmete protection is governed by the General Data Protection Regulation

Key players in handling isikuandmed are data controllers and data processors. They must provide clear information

Data subjects have rights to access, rectify, erase, restrict processing, object, and request data portability. They

Transfers of isikuandmed across borders are permitted under GDPR safeguards, including adequacy decisions and appropriate protections