GDPR applies exclusively to personal data. All data that is not personal data does not fall within the scope of GDPR. Under the EU Regulation, personal data is personally identifiable information, as it  can be used to directly or indirectly identify a person. The information that can be used as an identifier, such as name, identification number, location, IP, or information as to aspects specific to the physical, physiological, genetic, mental, economic, cultural or social identify of a person are considered personally identifiable information and therefore fall within the scope of GDPR. 




This information is provided for guidance and cannot be classified as official legal advice. For official direction related to your obligations under GDPR, please speak to your legal counsel.