icon-grid
Better Regulation logo
Table of Contents

Table of Contents

Expand all headings Collapse all headings Expand side bar Collapse side bar
Page Overview
Related
Document Overview
Tools
Set a date to view the document
Text comparison options
Full text - Date 1 vs Date 2 
Amendments requiring commencement - Current text vs Text requiring commencement
Draft proposed changes - Current text vs Text proposed by drafting documents
Recently generated comparisons
None generated
Print / Export options
Current page
Whole document
Selected pages
Consolidated PDF of the entire document as of 19th April 2026
Export
Export line by line
Export provision to provision
Report template
Create report template
Alert me to changes
Manage alerts
Bookmarks
This page
This document
Manage bookmarks
Search within this document
View previous searches
Share
Get page link
Share via email application

AI Summary of Article 4 Definitions

This Regulation establishes key definitions pertinent to the processing of personal data, outlining the responsibilities of different entities involved in such processing, including controllers and processors. It delineates 'personal data' as any information relating to an identifiable individual, covering a broad range of identifiers and attributes.

Key concepts include 'processing', which encompasses a variety of operations on personal data, and 'profiling', involving automated processing for evaluating personal aspects. Additionally, it defines critical terms such as 'consent', 'personal data breach', and 'supervisory authority', providing a comprehensive framework for data protection compliance.

PreviousNext
Version status: Applicable | Document consolidation status: Updated to reflect all known changes
Version date: 25 May 2018 - onwards
Version 3 of 3

Article 4 Definitions

DRAFT Point added Article 1 Amendments to Regulation (EU) 2016/679 of the Proposal for a Regulation of the European Parliament and of the Council amending Regulations (EU) 2016/679, (EU) 2016/1036, (EU) 2016/1037, (EU) 2017/1129, (EU) 2023/1542 and (EU) 2024/573 as regards the extension of certain mitigating measures available for small and medium sized enterprises to small mid-cap enterprises and further simplification measures (COM(2025) 501 final/3 / 2025/0130 (COD)) (updated 3 March 2026 with ***I Report)
View:
Current text Draft text as it may be read Compare current vs draft text Whole document current text vs draft text
DRAFT Text amended Article 3 Amendments to Regulation (EU) 2016/679 (GDPR) of the Proposal for a Regulation of the European Parliament and of the Council amending Regulations (EU) 2016/679, (EU) 2018/1724, (EU) 2018/1725, (EU) 2023/2854 and Directives 2002/58/EC, (EU) 2022/2555 and (EU) 2022/2557 as regards the simplification of the digital legislative framework, and repealing Regulations (EU) 2018/1807, (EU) 2019/1150, (EU) 2022/868, and Directive (EU) 2019/1024 (Digital Omnibus) (COM(2025) 837 final / 2025/0360 (COD))
View:
Current text Draft text as it may be read Compare current vs draft text Whole document current text vs draft text

For the purposes of this Regulation:

(1) "personal data" means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

(2) "processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

(3) "restriction of processing" means the marking of stored personal data with the aim of limiting their processing in the future;

PreviousNext