LogoLogo
LogoLogo
  • Data Compliance Dojo
  • Tools
    • Free compliance assessment
  • Need-to-know guides
    • What is the EU AI Act: The Ultimate Guide
    • Why You Should Budget for a vDPO or Data Advisor in 2025
    • How to Build a B2B Sales Data Strategy
  • Data Compliance Dictionary
    • Most Searched Terms
    • Privacy by Design
    • Data Protection Officer (DPO)
    • Aggregated PII
    • Consent (legal basis)
    • Data Breach
    • Data Collection
    • Data Controller
    • Data Processing
    • Data Processor
    • Data Protection Impact Assessment (DPIA)
    • Data Subject
    • General Data Protection Regulation (GDPR)
    • Personal Identifiable Information (PII)
Powered by GitBook

Links

  • Got back to Assenteo.com

© 2025 Assenteo Ltd

On this page
  1. Data Compliance Dictionary

Consent (legal basis)

PreviousAggregated PIINextData Breach

Last updated 1 month ago

Under the , can only be collected and/or processed under a ‘legal basis’ (or simply, only if there is a reasoning for the processing).

A or can rely on gaining the customer’s consent as a reasoning for data processing.

For consent to be compliant, it must be:

  • Freely given by the individual;

  • Specific of what PII will be processed, how and why;

  • Communicated to the individual so they understand what, how and why PII will be processed (informed); and,

  • A clear approval (an unambiguous indication of an individual's agreement) to the processing of their PII.

GDPR
PII
Processor
Controller