Skip to content
  • en
  • en

Polish-Japanese Academy of
Computer Technology,
branch in Gdańsk
ul. Targ Drzewny 9/11, 80-894 Gdańsk

2024-03-12

Message from the DPAs RODOindicators

What is "processing" and "limitation of processing"


In the next few episodes of the newsletter, we will continue the series started last month
on the basic concepts that have been defined by the EU legislator in Article 4
of RODO. This time we will take a closer look at two more definitions, i.e. "processing" and "restriction
of processing," which are very often used in the provisions of the RODO.


DEFINITION OF "PROCESSING"


According to Article 4 para. 2 of the RODO, processing "means an operation or set of operations which is performed upon
personal data or sets of personal data by automated or
non-automated means, such as collection, recording, organizing, structuring,
storing, adapting or modifying, retrieving, viewing, using,
disclosing by transmission, dissemination or otherwise making available, matching
or linking, limiting, erasing or destroying."


AUTOMATED AND NON-AUTOMATED OPERATIONS


As the definition implies, operations can be performed on data in an automated or
non-automated manner. Automated operations are those in which the
processing activities are performed with the use of devices that allow limited human involvement.
An example would be data processing using computer algorithms.
Non-automated data processing, on the other hand, involves performing various
types of actions on data using traditional methods (by humans) without using
tools that allow automation. Due to technological advances, it is increasingly difficult to distinguish
between automated and non-automated data processing. Some
of the computer programs enable data processing in both ways. An example
would be performing actions in Excel. Simply typing and storing
data in a worksheet would be non-automated data processing, while performing
calculations or sorting data using this software's tools are automated operations.


WAYS OF PROCESSING DATA


In the definition, the EU legislator cited examples of operations that fall within the
concept of processing. The role of this enumeration boils down to illustrating the categories of operations that are considered
to constitute "data processing." Thus, there is no doubt that the operations indicated
in the provision in question fall within the scope of the legal definition, although the colloquial understanding of this
concept is narrower.
It should also be remembered that the catalog of operations included in "data processing" is
open in nature (thanks to the use of the phrase "such as"). This is because it is not possible
to foresee all the operations that can be performed on personal data.

DEFINITION OF "LIMITATION OF PROCESSING


According to Article 4 para. 3 of the RODO, restriction of processing is "the marking of stored
personal data in order to limit its future processing." In simpler terms, restriction
of processing will mean the act of narrowing the modes of processing that can be undertaken
by the data controller. This may include both the scope of the information processed and the purposes for
which it is used. According to Dr. Marlena Sakowska-Baryla, "Restriction of processing
undertaken at the will of the controller will most often be derived from a desire to reduce the risks
associated with the processing process."


METHODS TO LIMIT THE PROCESSING OF PERSONAL DATA


Actions that allow limiting the processing of personal data are approximated
in recital (67) of the preamble of the RODO:
"Among the methods that allow limiting the processing of personal data may be
inter alia: temporarily transferring selected personal data to another processing system,
preventing users from accessing selected data, or temporarily deleting published
data from the website. In automated data sets, the processing should
generally be limited by technical means in such a way that the personal data are not subject to further
processing or alteration. The fact that the processing of personal data is restricted must
be clearly indicated in the system."
The above catalog is also open-ended and only serves as an exemplary representation
of the activities that make it possible to restrict the processing of data.


THE RIGHT TO RESTRICT DATA PROCESSING


Closely related to the concept of "restriction of processing" is one of the rights that the subject
has under the provisions of the RODO. We are talking about the right to restrict data processing, which
is regulated in Article 18 of the RODO. The key element of this entitlement is the prohibition of performing
operations on personal data other than storage. You will be able to read more about this
entitlement in a newsletter dedicated to this right, which will turn out in
some time. Meanwhile, I already refer those interested to an article on the subject

See other news

  1. 2024-07-19

    Graduates of Computer Science in Gdansk in the top of earnings 

    See more
  2. 2024-07-17

    PJATK graduates with best salaries among artists

    See more
  3. 2024-07-11

    SNM PJATK Gdańsk Diploma Review

    See more
  • Search

Cookies

Manage cookies

We use cookies to ensure the proper functioning of the website. We may also use cookies for analytical purposes in particular to match advertising content to your preferences. The use of analytical and functional cookies requires your consent. If you wish to accept all cookies, click "Accept all". If you do not consent to our use of non-essential cookies, click "Reject All." If you want to customize your consents, click "Manage cookies." Remember that you can withdraw any of your consents at any time by changing the settings you have chosen. For more information, see the Privacy Policy.

The use of cookies for the purposes indicated above is related to the processing of your personal data. For more information about our use of cookies and the processing of your personal data, including your rights, please see our Privacy Policy.

Below you can manage your preferences regarding the installation of analytical cookies on your device in connection with the use of our website. You can also review and learn which cookies are installed. For more information about the processing of your personal data and your rights, please see our Privacy Policy.

These cookies are essential to the operation of the site and cannot be disabled on our systems. They are usually set only in response to actions you perform that constitute a service request, such as setting privacy preferences, logging in or filling out forms. You can set your browser to block or alert you to these cookies, but some parts of the site will then not work. These cookies do not store any personally identifiable information.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us find out which pages are the most and which are the least popular and see how a visitor moves around the site. All information collected by these cookies is anonymous. If you don't allow these cookies, we won't know when you visited our site and won't be able to monitor its performance.

Files may be used by our Trusted Partners to track Users on websites. The purpose is to display ads tailored to the preferences of individual Users.