GDPR and data collection

GDPR is the European General Data Protection Regulation (GDPR), which started to apply uniformly in all Member States on May 25, 2018. It is a set of regulations designed to protect the personal data of EU residents and enforce rules on data privacy. It also shows, how organizations collect, store and use personal information.

GDPR provides, inter alia, that the collection of personal data can only begin when the researcher (the author of the survey) receives a clearly expressed consent of the individual about the collection itself.

The individual (respondent) must also be clearly informed of which data will be collected and for what purpose. This information may not be used for any other purpose of which the respondent was not informed and made a clear consent. This means that the author of the survey can only use the acquired data for the purpose of the research and does not pass it on to any third parties. It should also not link the data with other information it holds.

The consent can be withdrawn at any time by the individual (respondent), thereby terminating the authorization to process the data. Respondent has the right to deletion (right to forget), changes and insights to the data. On the basis of this, he can ask the survey’s author to delete or change his personal or survey data and to provide him with an overview of the collected data.

The whole regulaton is available here >>