How does GDPR define 'personal data'?

The definition of 'personal data' under the General Data Protection Regulation (GDPR) is specifically any information that relates to an identifiable person. This can include details like names, identification numbers, location data, and online identifiers, among other types of information. Essentially, if the data can be used to identify a person directly or indirectly, it falls under the category of personal data.

This definition is crucial as it establishes the scope of the GDPR and the protections it aims to ensure for individuals. By focusing on the ability to identify a person, the regulation seeks to safeguard the privacy and rights of individuals in an increasingly data-driven world. It is important to recognize this definition to understand the broader implications of data protection laws and practices one must follow to comply with GDPR.