Data Privacy Vocabulary (DPV)

Top-level umbrella LinkML schema for the W3C Data Privacy Vocabulary (DPV) version 2.3. Re-exports the eight semantic-group schemas (common, legal_basis, entities, personal_data, processing, risk_notice, rights, consent), which together provide 1:1 coverage of every class and slot in the upstream DPV 2.3 OWL release.

Each DPV semantic groups (i.e. dpv_consent) imports only its direct upstream module dependencies (i.e. dpv_common), avoiding the load cost of a single monolithic schema.

DPV modules (under ./modules/) remain usable as standalone scheama,and are intentionally NOT imported here to avoid duplicate class declarations during generation (each shared class would otherwise arrive with two conflicting from_Schema URIs).

DPV extensions (under ./extensions/, e.g. ai, risk, pd``tech, legal/*, sector/*) also remain usable as standalone schema, and are intentially NOT imported. This design aims to help consumers import only what they needed, not everything.

URI: https://w3id.org/lmodel/dpv

Name: dpv

Classes

Class	Description
DpvThing	Abstract base class for every DPV entity
Context	Contextually relevant information
Applicability	Concept provided to represent indication of cases where the information
NotApplicable	Concept indicating the information or context is not applicable
NotAvailable	Concept indicating the information or context is applicable but
UnknownApplicability	Concept indicating information or context availability is unknown i
DpvDuration	The duration or temporal limitation
EndlessDuration	Duration that is (known or intended to be) open ended or without an end
FixedOccurrencesDuration	Duration that takes place a fixed number of times e
IndeterminateDuration	Duration that is indeterminate or cannot be determined
ProcessingDuration	Conditions regarding duration or temporal limitation for processing
StorageDuration	Duration or temporal limitation on storage of data
TemporalDuration	Duration that has a fixed temporal duration e
UntilEventDuration	Duration that takes place until a specific event occurs e
UntilTimeDuration	Duration that has a fixed end date e
FeeRequirement	Concept indicating whether a fee is required
FeeNotRequired	Concept indicating a fee is not required
FeeRequired	Concept indicating a fee is required
Frequency	The frequency or information about periods and repetitions in terms of
ContinuousFrequency	Frequency where occurrences are continuous
OftenFrequency	Frequency where occurrences are often or frequent, but not continuous
SingularFrequency	Frequency where occurrences are singular i
SporadicFrequency	Frequency where occurrences are sporadic or infrequent or sparse
Importance	An indication of 'importance' within a context
PrimaryImportance	Indication of 'primary' or 'main' or 'core' importance
SecondaryImportance	Indication of 'secondary' or 'minor' or 'auxiliary' importance
Justification	A form of documentation providing reasons, explanations, or
Necessity	An indication of 'necessity' within a context
DpvOptional	Indication of 'optional' or 'voluntary'
NotRequired	Indication of neither being required nor optional i
Required	Indication of 'required' or 'necessary'
ProcessingContext	Context or conditions within which processing takes place
AlgorithmicLogic	The algorithmic logic applied or used
AutomationLevel	Indication of degree or level of automation associated with specified
AssistiveAutomation	Level of automation corresponding to Level 1 in ISO/IEC 22989:2022 where
Autonomous	Level of automation corresponding to Level 6 in ISO/IEC 22989:2022 where
ConditionalAutomation	Level of automation corresponding to Level 3 in ISO/IEC 22989:2022 where
FullAutomation	Level of automation corresponding to Level 5 in ISO/IEC 22989:2022 where
HighAutomation	Level of automation corresponding to Level 4 in ISO/IEC 22989:2022 where
NotAutomated	Level of automation corresponding to Level 0 in ISO/IEC 22989:2022 where
PartialAutomation	Level of automation corresponding to Level 2 in ISO/IEC 22989:2022 where
DataSource	The source or origin of data
DataControllerDataSource	Data Sourced from Data Controller(s), e
DataSubjectDataSource	Data Sourced from Data Subject(s), e
DataPublishedByDataSubject	Data is published by the data subject
NonPublicDataSource	A source of data that is not publicly accessible or available
PublicDataSource	A source of data that is publicly accessible or available
ThirdPartyDataSource	Data Sourced from a Third Party, e
DecisionMaking	Processing that involves decision making
AutomatedDecisionMaking	Processing that involves automated decision making
EntityInvolvement	Involvement of an entity in specific context
ConsentControl	The control or activity associated with obtaining, providing,
ObtainConsent	Control for obtaining consent
ProvideConsent	Control for providing consent
ManageConsent	Control for managing a given consent in terms of providing, reaffirming,
ReaffirmConsent	Control for affirming consent
RefuseConsent	Control for refusing consent
WithdrawConsent	Control for withdrawing consent
ContractControl	The control or activity associated with accepting, refusing, and other
AcceptContract	Control for accepting a contract
NegotiateContract	Control for negotiating a contract
OfferContract	Control for offering a contract
RefuseContract	Control for refusing a contract
TerminateContract	Control for terminating a contract
EntityActiveInvolvement	Involvement where entity is 'actively' involved
EntityIntendedInvolvement	Status indicating the involvement of the entity is intended
EntityInvolvementStatus	Status indicating whether an entity is involved
EntityInvolved	Status indicating the entity is involved
EntityNotInvolved	Status indicating the entity is not involved
EntityNonInvolvement	Indicating entity is not involved
EntityNonPermissiveInvolvement	Involvement of an entity in specific context where it is not permitted
CannotChallengeProcess	Involvement where entity cannot challenge the process of specified
CannotChallengeProcessInput	Involvement where entity cannot challenge input of specified context
CannotChallengeProcessOutput	Involvement where entity cannot challenge the output of specified
CannotCorrectProcess	Involvement where entity cannot correct the process of specified context
CannotCorrectProcessInput	Involvement where entity cannot correct input of specified context
CannotCorrectProcessOutput	Involvement where entity cannot correct the output of specified context
CannotObjectToProcess	Involvement where entity cannot object to process of specified context
CannotOptInToProcess	Involvement where entity cannot opt-in to specified context
CannotOptOutFromProcess	Involvement where entity cannot opt-out from specified context
CannotReverseProcessEffects	Involvement where entity cannot reverse effects of specified context
CannotReverseProcessInput	Involvement where entity cannot reverse input of specified context
CannotReverseProcessOutput	Involvement where entity cannot reverse output of specified context
CannotWithdrawFromProcess	Involvement where entity cannot withdraw a previously given assent from
EntityPassiveInvolvement	Involvement where entity is 'passively' or 'not actively' involved
EntityPermissiveInvolvement	Involvement of an entity in specific context where it is permitted or
ChallengingProcess	Involvement where entity can challenge the process of specified context
ChallengingProcessInput	Involvement where entity can challenge input of specified context
ChallengingProcessOutput	Involvement where entity can challenge the output of specified context
CorrectingProcess	Involvement where entity can correct the process of specified context
CorrectingProcessInput	Involvement where entity can correct input of specified context
CorrectingProcessOutput	Involvement where entity can correct the output of specified context
ObjectingToProcess	Involvement where entity can object to process of specified context
OptingInToProcess	Involvement where entity can opt-in to specified context
OptingOutFromProcess	Involvement where entity can opt-out from specified context
ReversingProcessEffects	Involvement where entity can reverse effects of specified context
ReversingProcessInput	Involvement where entity can reverse input of specified context
ReversingProcessOutput	Involvement where entity can reverse output of specified context
WithdrawingFromProcess	Involvement where entity can withdraw a previously given assent from
EntityUnintendedInvolvement	Status indicating the involvement of the entity is not intended
HumanInvolvement	The involvement of humans in specified context
HumanInvolved	Humans are involved in the specified context
HumanInvolvementForControl	Human involvement for the purposes of exercising control over the
HumanInvolvementForDecision	Human involvement for the purposes of exercising decisions over the
HumanInvolvementForInput	Human involvement for the purposes of providing inputs to the specified
HumanInvolvementForIntervention	Human involvement for the purposes of exercising interventions over the
HumanInvolvementForOversight	Human involvement for the purposes of having oversight over the
HumanInvolvementForVerification	Human involvement for the purposes of verification of specified context
HumanNotInvolved	Humans are not involved in the specified context
EvaluationScoring	Processing that involves evaluation and scoring of individuals
EvaluationOfIndividuals	Processing that involves evaluation of individuals
ScoringOfIndividuals	Processing that involves scoring of individuals
AutomatedScoringOfIndividuals	Processing that involves automated scoring of individuals
InnovativeUseOfTechnology	Indicates that technology is being used in an innovative manner
InnovativeUseOfExistingTechnology	Involvement of existing technologies used in an innovative manner
InnovativeUseOfNewTechnologies	Involvement of a new (innovative) technologies
ProcessingCondition	Conditions required or followed regarding processing of data or use of
StorageCondition	Conditions required or followed regarding storage of data
StorageDeletion	Deletion or Erasure of data including any deletion guarantees
StorageRestoration	Regularity and temporal span of data restoration/backup mechanisms that
Scale	A measurement along some dimension
DataSubjectScale	Scale of Data Subject(s)
HugeScaleOfDataSubjects	Scale of data subjects considered huge or more than large within the
LargeScaleOfDataSubjects	Scale of data subjects considered large within the context
MediumScaleOfDataSubjects	Scale of data subjects considered medium i
SingularScaleOfDataSubjects	Scale of data subjects considered singular i
SmallScaleOfDataSubjects	Scale of data subjects considered small or limited within the context
SporadicScaleOfDataSubjects	Scale of data subjects considered sporadic or sparse within the context
DataVolume	Volume or Scale of Data
HugeDataVolume	Data volume that is considered huge or more than large within the
LargeDataVolume	Data volume that is considered large within the context
MediumDataVolume	Data volume that is considered medium i
SingularDataVolume	Data volume that is considered singular i
SmallDataVolume	Data volume that is considered small or limited within the context
SporadicDataVolume	Data volume that is considered sporadic or sparse within the context
GeographicCoverage	Indicate of scale in terms of geographic coverage
GlobalScale	Geographic coverage spanning the entire globe
LocalEnvironmentScale	Geographic coverage spanning a specific environment within the locality
LocalityScale	Geographic coverage spanning a specific locality
MultiNationalScale	Geographic coverage spanning multiple nations
NationalScale	Geographic coverage spanning a nation
NearlyGlobalScale	Geographic coverage nearly spanning the entire globe
RegionalScale	Geographic coverage spanning a specific region or regions
ProcessingScale	Scale of Processing
LargeScaleProcessing	Processing that takes place at large scales (as specified by some
MediumScaleProcessing	Processing that takes place at medium scales (as specified by some
SmallScaleProcessing	Processing that takes place at small scales (as specified by some
SystematicMonitoring	Processing that involves systematic monitoring of individuals
Scope	Indication of the extent or range or boundaries associated with(in) a
Status	The status or state of something
ActivityStatus	Status associated with activity operations and lifecycles
ActivityCompleted	State of an activity that has completed i
ActivityHalted	State of an activity that was occurring in the past, and has been halted
ActivityNotCompleted	State of an activity that could not be completed, but has reached some
ActivityOngoing	State of an activity occurring in continuation i
ActivityPlanned	State of an activity being planned with concrete plans for
ActivityProposed	State of an activity being proposed without any concrete plans for
AuditStatus	Status associated with Auditing or Investigation
AuditApproved	State of being approved through the audit
AuditConditionallyApproved	State of being conditionally approved through the audit
AuditNotRequired	State where an audit is determined as not being required
AuditRejected	State of not being approved or being rejected through the audit
AuditRequested	State of an audit being requested whose outcome is not yet known
AuditRequired	State where an audit is determined as being required but has not been
ComplianceStatus	Status associated with Compliance with some norms, objectives, or
ComplianceIndeterminate	State where the status of compliance has not been fully assessed,
ComplianceUnknown	State where the status of compliance is unknown
ComplianceViolation	State where compliance cannot be achieved due to requirements being
Compliant	State of being fully compliant
Lawfulness	Status associated with expressing lawfulness or legal compliance
Lawful	State of being lawful or legally compliant
LawfulnessUnknown	State of the lawfulness not being known
Unlawful	State of being unlawful or legally non-compliant
NonCompliant	State of non-compliance where objectives have not been met, but have not
PartiallyCompliant	State of partially being compliant i
ConformanceStatus	Status associated with conformance to a standard, guideline, code, or
Conformant	State of being conformant
NonConformant	State of being non-conformant
ConsentStatus	The state or status of 'consent' that provides information reflecting
ConsentStatusInvalidForProcessing	States of consent that cannot be used as valid justifications for
ConsentExpired	The state where the temporal or contextual validity of consent has
ConsentInvalidated	The state where consent has been deemed to be invalid
ConsentRefused	The state where consent has been refused
ConsentRequestDeferred	State where a request for consent has been deferred without a decision
ConsentRequested	State where a request for consent has been made and is awaiting a
ConsentRevoked	The state where the consent is revoked by an entity other than the data
ConsentUnknown	State where information about consent is not available or is unknown
ConsentWithdrawn	The state where the consent is withdrawn or revoked specifically by the
ConsentStatusValidForProcessing	States of consent that can be used as valid justifications for
ConsentGiven	The state where consent has been given
RenewedConsentGiven	The state where a previously given consent has been 'renewed' or
ContractStatus	Status associated with a contract
ContractActivationStatus	Status associated with activation of a contract i
ContractActive	Status representing contract that has been fully executed and whose
ContractInactive	Status representing contract that has been fully executed and whose
ContractExecutionStatus	Status associated with execution of a contract (i
ContractFullyExecuted	Status representing contract has been fully executed i
ContractFullySigned	Status representing contract has been signed by all concerned parties
ContractPartiallySigned	Status representing contract has been partially signed by parties i
ContractSignedByParty	Status representing contract has been signed by the indicated signing
ContractFulfilmentStatus	Status associated with fulfilment of a contract
ContractFulfilled	Status representing contract where all its terms have been fulfilled in
ContractNotFulfilled	Status representing contract where none of its terms have been fulfilled
ContractPartiallyFulfilled	Status representing contract where some of its terms have been
ContractViolated	Status representing contract where one or more terms have not been
ContractPerformanceStatus	Status associated with performance of a contract
ContractAmended	Status representing contract that has been fully executed and whose
ContractBeingPerformed	Status representing contract that has been fully executed and whose
ContractRenewed	Status representing contract being renewed with new duration and/or
ContractTemporarilySuspended	Status representing contract that has been temporarily suspended through
ContractPreparationStatus	Status associated with preparation of contracts before they are signed
ContractApproved	Status representing contract has been approved and can be used for
ContractDrafted	Status representing the drafting of contract text has been completed and
ContractNegotiated	Status representing contract has been successfully negotiated by
ContractOffered	Status representing contract has been offered to a party or to parties
ContractRejected	Status representing contract has been rejected and cannot be used for
ContractUnderNegotiation	Status representing contract is under negotiation between parties
ContractUnderReview	Status representing contract is under review and is being considered for
ContractTerminationStatus	Status associated with termination of a contract
ContractBreached	Status representing contract being breached where its terms are not
ContractDisputed	Status representing contract being disputed where one or more parties
ContractExpired	Status representing reaching the expiry defined in the contract, such as
ContractExtended	Status representing the duration associated with a contract being
ContractTerminated	Status representing contract being terminated by one or more parties
ContractualClauseFulfilmentStatus	Status associated with fulfilment of a contractual clause
ContractualClauseFulfilled	Status indicating the terms of the contractual clause are fulfilled i
ContractualClauseNotFulfilled	Status indicating the terms of the contractual clause have not yet been
ContractualClausePartiallyFulfilled	Status indicating some of the terms of the contractual clause have been
ContractualClauseViolated	Status indicating the terms of the contractual clause have been violated
EntityInformedStatus	Status indicating whether an entity is informed or uninformed about
EntityInformed	Status indicating entity has been informed about specified context
AuthorityInformed	Status indicating Authority has been informed about the specified
ControllerInformed	Status indicating Controller has been informed about the specified
DataSubjectInformed	Status indicating DataSubject has been informed about the specified
RecipientInformed	Status indicating Recipient has been informed about the specified
EntityUninformed	Status indicating entity is uninformed i
AuthorityUninformed	Status indicating Authority is uninformed i
ControllerUninformed	Status indicating Controller is uninformed i
DataSubjectUninformed	Status indicating DataSubject is uninformed i
RecipientUninformed	Status indicating Recipient is uninformed i
IntentionStatus	Status indicating whether the specified context was intended or
Intended	Status indicating the specified context was intended
Unintended	Status indicating the specified context was unintended i
InvolvementStatus	Status indicating whether the involvement of specified context
ActivelyInvolved	Status indicating the specified context is 'actively' involved
NotInvolved	Status indicating the specified context is 'not' involved
PassivelyInvolved	Status indicating the specified context is 'passively' involved
LegalObligationStatus	Status associated with use of Legal Obligation as a legal basis
LegalObligationCompleted	Status where the legal obligation has been completed
LegalObligationOngoing	Status where the legal obligation is being fulfilled
LegalObligationPending	Status where the legal obligation has not been started
LegitimateInterestStatus	Status associated with use of Legitimate Interest as a legal basis
LegitimateInterestInformed	Status where the Legitimate Interest was informed to the data subject or
LegitimateInterestNotObjected	Status where the use of Legitimate Interest was not objected to
LegitimateInterestObjected	Status where the use of Legitimate Interest was objected to
LegitimateInterestUninformed	Status where the Legitimate Interest was not informed to the data
NoticeStatus	Status associated with notice provision, use, and management
NoticeCommunicated	Status indicating the notice has been communicated
NoticeGenerated	Status indicating the notice has been generated
NoticeLatest	Status indicating the notice is currently at its latest iteration
NoticeStale	Status indicating the notice is stale or not up to date or not the
NoticeUnused	Status indicating the notice has been communicated but has not yet been
NoticeUpdated	Status indicating the notice has been updated and its contents or
NoticeUsed	Status indicating the notice has been communicated and has been used
NotificationStatus	Status indicating whether notification(s) are planned, completed, or
NotificationCompleted	Status indicating notification(s) are completed
NotificationFailed	Status indicating notification(s) could not be completed due to a
NotificationNotNeeded	Status indicating notification(s) are not needed
NotificationOngoing	Status indicating notification(s) are ongoing
NotificationPlanned	Status indicating notification(s) are planned
OfficialAuthorityExerciseStatus	Status associated with use of Official Authority as a legal basis
OfficialAuthorityExerciseCompleted	Status where the official authority has been exercised to completion
OfficialAuthorityExerciseOngoing	Status where the official authority is being exercised
OfficialAuthorityExercisePending	Status where the official authority has not been exercised
PublicInterestStatus	Status associated with use of Public Interest as a legal basis
PublicInterestCompleted	Status where the public interest activity has been completed
PublicInterestObjected	Status where the public interest activity was objected to by the Data
PublicInterestOngoing	Status where the public interest activity is ongoing
PublicInterestPending	Status where the public interest activity has not started
RequestStatus	Status associated with requests
RequestAccepted	State of a request being accepted towards fulfilment
RequestAcknowledged	State of a request being acknowledged
RequestActionDelayed	State of a request being delayed towards fulfilment
RequestFulfilled	State of a request being fulfilled
RequestInitiated	State of a request being initiated
RequestRejected	State of a request being rejected towards non-fulfilment
RequestRequiredActionPerformed	State of a request's required action having been performed by the other
RequestRequiresAction	State of a request requiring an action to be performed from another
RequestStatusQuery	State of a request's status being queried
RequestUnfulfilled	State of a request being unfulfilled
ReuseCompatibility	Status indicating whether the specified context is compatible with
CompatibilityUnknown	Status indicating the compatibility of the context with an earlier
PrimaryUse	Status indicating compatibility based on the use being either the
SecondaryUse	Status indicating incompatibility based on the use not being compatible
RuleFulfilmentStatus	Status associated with a rule for indicating whether it is applicable,
RuleFulfilled	Status indicating a rule has been fulfilled, completed, or satisfied
DeterrenceFollowed	Status indicating a deterrence has been followed i
ObligationFulfilled	Status indicating an obligation has been fulfilled i
PermissionNotUtilised	Status indicating a permission has not been utilised i
PermissionUtilised	Status indicating a permission has been utilised i
ProhibitionUnviolated	Status indicating a prohibition has not been violated i
RecommendationFollowed	Status indicating a recommendation has been followed i
RuleUnfulfilled	Status indicating a rule has not been fulfilled nor violated
DeterrenceNotFollowed	Status indicating a deterrence has not been followed i
ObligationUnfulfilled	Status indicating an obligation has not been fulfilled i
RecommendationNotFollowed	Status indicating a recommendation has not been followed i
RuleViolated	Status indicating a rule has been violated, breached, broken, or
ObligationViolated	Status indicating an obligation has been violated i
ProhibitionViolated	Status indicating a prohibition has been violated i
VitalInterestStatus	Status associated with use of Vital Interest as a legal basis
VitalInterestCompleted	Status where the vital interest activity has been completed
VitalInterestObjected	Status where the vital interest activity was objected to by the Data
VitalInterestOngoing	Status where the vital interest activity is ongoing
VitalInterestPending	Status where the vital interest activity has not started
ContractualClause	A part or component within a contract that outlines its specifics
ContractAmendmentClause	A provision describing how changes or modifications to the contract can
ContractConfidentialityClause	A provision requiring parties to keep certain information confidential
ContractDefinitions	A section specifying the meanings of key terms and phrases used
ContractDisputeResolutionClause	A provision detailing the methods and procedures for resolving
ContractJurisdictionClause	A provision specifying the legal jurisdiction or court where disputes
ContractPreamble	An introductory section outlining the background, context, and purpose
ContractTerminationClause	A provision outlining the conditions under which the contract can be
TermsOfService	Contractual clauses outlining the terms and conditions regarding the
DpvData	A broad concept representing 'data' or 'information'
CollectedData	Data that has been obtained by collecting it from a source
CollectedPersonalData	Personal Data that has been collected from another source such as the
ObservedPersonalData	Personal Data that has been collected through observation of the Data
ProvidedPersonalData	Personal Data that has been provided by an entity such as the Data
ObservedData	Data that has been obtained through observations of a source
ProvidedData	Data that has been provided by an entity
ConfidentialData	Data deemed confidential
CommerciallyConfidentialData	Data that is considered confidential due to business/trade secrets,
IntellectualPropertyData	Data protected by Intellectual Property rights and regulations
ProfessionalConfidentialData	Data protected by professional secrecy or confidentiality, including but
StatisticallyConfidentialData	Data protected through Statistical Confidentiality regulations and
DerivedData	Data that has been obtained through derivations of other data
DerivedPersonalData	Personal Data that is obtained or derived from other data
InferredPersonalData	Personal Data that is obtained through inference from other data
InferredData	Data that has been obtained through inferences of other data
GeneratedData	Data that is generated or brought into existence without relation to
SyntheticData	Synthetic data refers to artificially created data such that it is
IncorrectData	Data that is known to be incorrect or inconsistent with some
NonPersonalData	Data that is not Personal Data
AnonymisedData	Personal Data that has been (fully and completely) anonymised so that it
PersonalData	Data directly or indirectly associated or related to an individual
GeneratedPersonalData	Personal Data that is generated or brought into existence without
IdentifyingPersonalData	Personal Data that explicitly and by itself is sufficient to identify a
PseudonymisedData	Pseudonymised Data is data that has gone a partial or incomplete
ContextuallyAnonymisedData	Data that can be considered as being fully anonymised within the context
SensitivePersonalData	Personal data that is considered 'sensitive' in terms of privacy and/or
SpecialCategoryPersonalData	Sensitive Personal Data whose use requires specific additional legal
SensitiveData	Data deemed sensitive
SensitiveNonPersonalData	Non-personal data deemed sensitive
UncategorisedData	Data whose categorisation is not known e
UnstructuredData	Data that is without a predefined data model or is not organised in a
UnverifiedData	Data that has not been verified in terms of accuracy, inconsistency, or
VerifiedData	Data that has been verified in terms of accuracy, consistency, or
DpvEntity	A human or non-human 'thing' that constitutes as an entity
DpvAgent	An Agent is a dpv:Entity that is (a) acting on behalf of another Entity;
LegalAgent	A Legal Agent is a Legal Entity that is authorised to act on behalf of
LegalEntity	A human or non-human 'thing' that constitutes as an entity and which is
CharityOrganisation	A nonprofit entity dedicated to providing assistance or raising funds
DataController	The individual or organisation that decides (or controls) the purpose(s)
JointDataControllers	A group of Data Controllers that jointly determine the purposes and
DataExporter	An entity that 'exports' data where exporting is considered a form of
DpvOrganisation	A general term reflecting a company or a business or a group acting as a
AcademicScientificOrganisation	Organisations related to academia or scientific pursuits e
Clinic	An organisation that is a smaller healthcare facility offering
EducationalOrganisation	An organisation focused on delivering formal or informal education,
EmergencyServiceProvider	An organisation tasked with providing emergency services such as by
AmbulanceProvider	An organisation that that offers transportation and medical care to
EmergencyHealthcareProvider	An organisation that is an emergency service provider focused on
FireDepartment	An organisation that is an emergency service provider for fire
ForProfitOrganisation	An organisation that aims to achieve profit as its primary goal
GovernmentalOrganisation	An organisation managed or part of government
DpvAuthority	An authority with the power to create or enforce laws, or determine
DataProtectionAuthority	An authority tasked with overseeing legal compliance regarding privacy
NationalAuthority	An authority tasked with overseeing legal compliance for a nation
RegionalAuthority	An authority tasked with overseeing legal compliance for a region
SupraNationalAuthority	An authority tasked with overseeing legal compliance for a
HealthcareOrganisation	An organisation that delivers medical services, promotes health, and
Hospital	An organisation that provides comprehensive medical treatment, including
IndustryConsortium	A consortium established and comprising on industry organisations
InternationalOrganisation	An organisation and its subordinate bodies governed by public
JudicialOrganisation	An organisation involved in interpreting and applying the law, resolving
LawEnforcementOrganisation	An organisation that is an agency responsible for enforcing laws,
NonGovernmentalOrganisation	An organisation not part of or independent from the government
NonProfitOrganisation	An organisation that does not aim to achieve profit as its primary goal
ParentLegalEntity	A legal entity that has one or more subsidiary entities operating under
ReligiousAssociations	An organisations that supports the practice, promotion, and management
SubsidiaryLegalEntity	A legal entity that operates as a subsidiary of another legal entity
DpvRecipient	Entities that receive data or technologies
DataImporter	An entity that 'imports' data where importing is considered a form of
DataProcessor	A ‘processor’ means a natural or legal person, public authority, agency
DataSubProcessor	A 'sub-processor' is a processor engaged by another processor
HumanSubject	The individual (or category of individuals) that is the subject within
Adult	A natural person that is not a child i
Applicant	Humans that are applicants in some context
Citizen	Humans that are citizens (for a jurisdiction)
DataSubject	The individual (or category of individuals) whose personal data is being
DpvConsumer	Humans that consume goods or services for direct use
DpvCustomer	Humans that purchase goods or services
Client	Humans that are clients or recipients of services
DpvUser	Humans that use service(s)
Employee	Humans that are employees
GuardianOfHuman	Guardian(s) of humans
GuardianOfDataSubject	Guardian(s) of data subjects such as children
Immigrant	Humans that are immigrants (for a jurisdiction)
JobApplicant	Humans that apply for jobs or employments
Member	Humans that are members of a group, organisation, or other collectives
NonCitizen	Humans that are not citizens (for a jurisdiction)
ParentOfHuman	Parent(s) of humans
ParentOfDataSubject	Parent(s) of data subjects such as children
Participant	Humans that participate in some context such as volunteers in a function
Patient	Humans that receive medical attention, treatment, care, advice, or other
Student	Humans that are students
Subscriber	Humans that subscribe to service(s)
Tourist	Humans that are tourists i
Visitor	Humans that are temporary visitors
VulnerableHuman	Human(s) which should be considered 'vulnerable' within the context
AsylumSeeker	Humans that are asylum seekers
Child	A 'child' is a natural legal person who is below a certain legal age
ElderlyHuman	Humans that are considered elderly (i
MentallyVulnerableHuman	Humans that are considered mentally vulnerable within the context
MentallyVulnerableDataSubject	Data subjects that are considered mentally vulnerable
VulnerableDataSubject	Humans which should be considered 'vulnerable' and therefore would
ElderlyDataSubject	Data subjects that are considered elderly (i
PrivateSectorBody	An organisation owned and operated by private individuals or companies
PublicSectorBody	A government-controlled organisation that provides services or goods to
Representative	A representative of a legal entity
DataProtectionOfficer	An entity within or authorised by an organisation to monitor internal
ServiceConsumer	The entity that consumes or receives the service
ServiceProvider	The entity that provides a service
SMEOrganisation	An organisation that is characterised as a Small or Medium-sized
StartupOrganisation	An organisation that is newly established and is nascent in terms of
ThirdParty	A ‘third party’ means any natural or legal person other than - the
NaturalPerson	A human
OrganisationalUnit	Entity within an organisation that does not constitute as a separate
DpvLocation	A location is a position, site, or area where something is located
DpvJurisdiction	A jurisdiction represents the locations that define the extent of
DpvCountry	A political entity indicative of a sovereign or non-sovereign
DpvRegion	A region is an area or site that is considered a location
City	A region consisting of urban population and commerce
ThirdCountry	Represents a country outside applicable or compatible jurisdiction as
EconomicUnion	A political union of two or more countries based on economic or trade
InverseJurisdiction	An inverse jurisdiction for a specific jurisdiction is the set of all
SupraNationalUnion	A political union of two or more countries with an establishment of
LocationLocality	Locality refers to whether the specified location is local within some
LocalLocation	Location is local
PrivateLocation	Location that is not or cannot be accessed by the public and is
PublicLocation	Location that is or can be accessed by the public
WithinDevice	Location is local and entirely within a device, such as a smartphone
RemoteLocation	Location is remote i
CloudLocation	Location that is in the 'cloud' i
PrivateSpace	A space that is owned or controlled by a private entity and where access
HybridPublicPrivateSpace	A space that is a hybrid space i
PrivatelyOperatedPublicSpace	A space that is operated or managed by a private entity but which is
PrivatelyOwnedPublicSpace	A space that is privately owned but which is accessible and usable by
PersonalSpace	A private space associated with an individual in a personal capacity -
PrivateCommunalSpace	A space that is accessible to a group or a community within a private
PrivatelyOwnedSpace	A place that is privately owned e
SemiPrivateSpace	A private space that acts as a shared space with other entities but
ProcessingLocation	Conditions regarding location or geospatial scope where processing takes
StorageLocation	Location or geospatial scope where the data is stored
PublicSpace	Any space that is accessible to the public or is owned by the public
PubliclyAccessibleSpace	A space that is accessible to all members of the public e
PubliclyOwnedSpace	A space that is owned by the public e
WithinPhysicalEnvironment	Location is local and entirely within a physical environment, such as a
WithinVirtualEnvironment	Location is local and entirely within a virtual environment, such as a
DpvProcess	An action, activity, or method
DpvService	A service is a process where one entity provides some benefit or
NonPersonalDataProcess	An action, activity, or method involving non-personal data, and
PersonalDataHandling	An abstract concept describing 'personal data handling'
PersonalDataProcess	An action, activity, or method involving personal data
ExpectationStatus	Status indicating whether the specified context was intended or
Expected	Status indicating the specified context was expected
Unexpected	Status indicating the specified context was unexpected i
Law	A law is a set of rules created by government or authorities
LegalBasis	Legal basis used to justify processing of data or use of technology in
Consent	Consent of the Data Subject for specified process or activity
InformedConsent	Consent that is informed i
ExpressedConsent	Consent that is expressed through an action intended to convey a
ExplicitlyExpressedConsent	Consent that is expressed through an explicit action solely conveying a
ImpliedConsent	Consent that is implied indirectly through an action not associated
UninformedConsent	Consent that is uninformed i
Contract	Creation, completion, fulfilment, or performance of a contract involving
ContractByDomain	A generic concept representing contracts categorised by specific domains
DistributionAgreement	A contract regarding supply of data or technologies between a
EmploymentContract	A contract regarding employment between an employer and an employee
LicenseAgreement	A Legal Document providing permission to utilise data or resource and
EULA	End User License Agreement is a contract entered into between a software
ServiceLevelAgreement	A contract regarding the provision of a service which outlines the
ContractByEntityType	A generic concept representing contracts categorised by the type of
B2BContract	A contract between two businesses
B2B2CContract	A contract between two businesses who partner together to provide
B2CContract	A contract between a business and a consumer where the business provides
C2BContract	A contract between a consumer and a business where the business
C2CContract	A contract between two consumers
G2BContract	A contract between a government and a business
G2CContract	A contract between a government and consumers
G2GContract	A contract between two governments or government departments or units
ContractByNegotiationType	A generic concept representing contracts categorised based on their use
NegotiatedContract	A contract where the terms and conditions are determined with all
StandardFormContract	A contract where the terms and conditions are determined by one or more
ConsumerStandardFormContract	A contract where the terms and conditions are determined by parties in
ProviderStandardFormContract	A contract where the terms and conditions are determined by parties in
ContractPerformance	Fulfilment or performance of a contract involving specified processing
DataProcessingAgreement	An agreement outlining conditions, criteria, obligations,
DataControllerContract	Creation, completion, fulfilment, or performance of a contract, with
JointDataControllersAgreement	An agreement outlining conditions, criteria, obligations,
DataProcessorContract	Creation, completion, fulfilment, or performance of a contract, with the
ControllerProcessorAgreement	An agreement outlining conditions, criteria, obligations,
DataSubjectContract	Creation, completion, fulfilment, or performance of a contract, with the
ControllerDataSubjectAgreement	An agreement outlining conditions, criteria, obligations,
SubProcessorAgreement	An agreement outlining conditions, criteria, obligations,
ThirdPartyContract	Creation, completion, fulfilment, or performance of a contract, with the
ThirdPartyAgreement	An agreement outlining conditions, criteria, obligations,
EnterIntoContract	Processing necessary to enter into contract
DataTransferLegalBasis	Specific or special categories and instances of legal basis intended for
LegalObligation	Legal Obligation to conduct the specified activities
RightsFulfilment	Purposes associated with the fulfillment of rights specified in law
LegitimateInterest	Legitimate Interests of a Party as justification for specified
LegitimateInterestOfController	Legitimate Interests of a Data Controller in conducting specified
LegitimateInterestOfDataSubject	Legitimate Interests of the Data Subject in conducting specified
LegitimateInterestOfThirdParty	Legitimate Interests of a Third Party in conducting specified activities
OfficialAuthorityOfController	Activities are necessary or authorised through the official authority
PublicInterest	Activities are necessary or beneficial for interest of the public or
VitalInterest	Activities are necessary or required to protect vital interests of a
VitalInterestOfNaturalPerson	Activities are necessary or required to protect vital interests of a
VitalInterestOfDataSubject	Activities are necessary or required to protect vital interests of a
Likelihood	The likelihood or probability or chance of something taking place or
LocationFixture	The fixture of location refers to whether the location is fixed
DecentralisedLocations	Location that is spread across multiple separate areas with no
FederatedLocations	Location that is federated across multiple separate areas with
FixedLocation	Location that is fixed i
FixedMultipleLocations	Location that is fixed with multiple places e
FixedSingularLocation	Location that is fixed at a specific place e
RandomLocation	Location that is random or unknown
VariableLocation	Location that is known but is variable e
NoticeIcon	An icon within a notice associated with specific information or elements
NoticeLayer	A layer within a layered notice where the layer can be used for
Processing	Operations or 'processing' performed on data
Copy	to produce an exact reproduction of the data
Disclose	to make data known
DiscloseByTransmission	to disclose data by means of transmission
Display	to present or show data
Disseminate	to spread data throughout
Download	to provide a copy or to receive a copy of data over a network or
Export	to provide a copy of data from one system to another
MakeAvailable	to transform or publish data to be used
Share	to give data (or a portion of it) to others
Transmit	to send out data
Obtain	to solicit or gather data from someone
Acquire	to come into possession or control of the data
Collect	to gather data from someone
Derive	to create new derivative data from the original data
Infer	to infer data from existing data
DpvRecord	to make a record (especially media)
Generate	to generate or create data
Observe	to obtain data through observation
Organise	to organize data for arranging or classifying
Structure	to arrange data according to a structure
Format	to arrange or structure data in a specific form
Reformat	to rearrange or restructure data to change its form
Remove	to destruct or erase data
Delete	to remove data in a logical fashion i
Destruct	to process data in a way it no longer exists or cannot be repaired
Erase	to remove data from existence i
Store	to keep data for future use
Transfer	to move data from one place to another
CrossBorderTransfer	to move data from one jurisdiction (border) to another
Move	to move data from one location to another including deleting the
Transform	to change the form or nature of data
Adapt	to modify the data, often rewritten into a new form for a new use
Align	to adjust the data to be in relation to another data
Alter	to change the data without changing it into something else
Aggregate	to aggregate data
Modify	to modify or change data
Anonymise	to irreversibly alter personal data in such a way that an unique data
Combine	to join or merge data
Filter	to filter or keep data for some criteria
Pseudonymise	to replace personal identifiable information by artificial identifiers
Restrict	to apply a restriction on the processing of specific records
Screen	to remove data for some criteria
Use	to use data
Access	to access data
Analyse	to study or examine the data in detail
Assess	to assess data for some criteria
Consult	to consult or query data
Monitor	to monitor data for some criteria
Query	to query or make enquiries over data
Match	to combine, compare, or match data from different sources
Profiling	to create a profile that describes or represents a person
Retrieve	to retrieve data, often in an automated manner
Tracking	to use data to track a specific factor (e
TrackingByFirstParty	to perform tracking where the performing entity is a first party within
TrackingByThirdParty	to perform tracking where the performing entity is a third party within
PublicRegisterOfEntities	A publicly available list of entities e
Purpose	Purpose or (broader) Goal associated with data or technology
AccountManagement	Account Management refers to purposes associated with account
CommercialPurpose	Purposes associated with processing activities performed in a commercial
CommercialResearch	Purposes associated with conducting research in a commercial setting or
CommunicationManagement	Communication Management refers to purposes associated with providing or
CommunicationForCustomerCare	Customer Care Communication refers to purposes associated with
CustomerManagement	Customer Management refers to purposes associated with managing
CustomerCare	Customer Care refers to purposes associated with purposes for providing
CustomerClaimsManagement	Customer Claims Management refers to purposes associated with managing
CustomerOrderManagement	Customer Order Management refers to purposes associated with managing
CustomerRelationshipManagement	Customer Relationship Management refers to purposes associated with
ImproveInternalCRMProcesses	Purposes associated with improving customer-relationship management
CustomerSolvencyMonitoring	Customer Solvency Monitoring refers to purposes associated with monitor
EnforceSecurity	Purposes associated with ensuring and enforcing security for data,
EnforceAccessControl	Purposes associated with conducting or enforcing access control as a
IdentityAuthentication	Purposes associated with performing authentication based on identity as
MisusePreventionAndDetection	Prevention and Detection of Misuse or Abuse of services
FraudPreventionAndDetection	Purposes associated with fraud detection, prevention, and mitigation
CounterMoneyLaundering	Purposes associated with detection, prevention, and mitigation of
MaintainFraudDatabase	Purposes associated with maintaining a database related to identifying
Verification	Purposes association with verification e
AgeVerification	Purposes associated with verifying or authenticating age or age related
IdentityVerification	Purposes associated with verifying or authenticating identity as a form
EstablishContractualAgreement	Purposes associated with carrying out data processing to establish an
FulfilmentOfObligation	Purposes associated with carrying out data processing to fulfill an
FulfilmentOfContractualObligation	Purposes associated with carrying out data processing to fulfill a
LegalCompliance	Purposes associated with carrying out data processing to fulfill a legal
ProtectionOfIPR	Purposes associated with the protection of intellectual property rights
HumanResourceManagement	Purposes associated with managing humans and 'human resources' within
PersonnelManagement	Purposes associated with management of personnel associated with the
PersonnelHiring	Purposes associated with management and execution of hiring processes of
PersonnelOnboarding	Purposes associated with onboarding and integration of personnel within
RecruitmentManagement	Purposes assocaited with recruitment of personnel, which includes
RecruitmentApplicantBackgroundCheck	Purposes assocaited with conducting background checks for prospective
RecruitmentApplicantCriminalBackgroundCheck	Purposes associated with conducting criminal background assessment for
RecruitmentApplicantInformationAuthentication	Purposes associated with authentication and verification of information
RecruitmentApplicantSelection	Purposes associated with determination or selection of candidates,
RecruitmentApplicationManagement	Purposes associated with managing job applications for recruitment
RecruitmentApplicationAnalysis	Purposes assocaited with analysis of job applications or job candidates
RecruitmentApplicationScreening	Purposes associated with screening and filtering of job applications or
RecruitmentInterviewManagement	Purposes associated conducting and managing interviews for recruitment
RecruitmentInterviewAnalysis	Purposes associated with analysis of interviews, including the people
RecruitmentInterviewAssessment	Purposes associated with assessment of interviews, including assessment
RecruitmentInterviewScheduling	Purposes associated with scheduling interviews for recruitment
PersonnelMonitoring	Purposes associated with monitoring of personnel
PersonnelBehaviourMonitoring	Purposes associated with monitoring behaviour of personnel
PersonnelPerformanceMonitoring	Purposes associated with monitoring of performance of personnel
PersonnelOffboarding	Purposes associated with offboarding of personnel i
PersonnelPayment	Purposes associated with management and execution of payment of
PersonnelPerformanceManagement	Purposes associated with management of performance of personnel
PersonnelPerformanceEvaluation	Purposes associated with evaluation or assessment of performance of
PersonnelPerformancePrediction	Purposes associated with prediction of performance of personnel
PersonnelPromotionManagement	Purposes associated with determination and management of promotion of
PersonnelTerminationManagement	Purposes associated with determination and management of termination of
PersonnelWorkloadManagement	Purposes assocaited with determination, scheduling, planning, and
Marketing	Purposes associated with conducting marketing in relation to
Advertising	Purposes associated with conducting advertising i
PersonalisedAdvertising	Purposes associated with creating and providing personalised advertising
TargetedAdvertising	Purposes associated with creating and providing personalised
PoliticalCampaign	Purposes associated with political campaign activities related to
RecruitmentAdvertising	Purposes associated with advertisement for Recruitments and personnel
RecruitmentTargetedAdvertising	Purposes associated with targeted advertisement for Recruitments and
DirectMarketing	Purposes associated with conducting direct marketing i
PublicRelations	Purposes associated with managing and conducting public relations
SocialMediaMarketing	Purposes associated with conducting marketing through social media
NonCommercialPurpose	Purposes associated with processing activities performed in a
NonCommercialResearch	Purposes associated with conducting research in a non-commercial setting
OrganisationGovernance	Purposes associated with conducting activities and functions for
DataGovernance	Measures associated with topics typically considered to be part of 'Data
DataAvailabilityAssessment	Measures associated with assessment of availability of data for specific
DataInteroperabilityManagement	Measures associated with management of data interoperability
DataInteroperabilityImprovement	Measures associated with improvement of data interoperability
DataInventoryManagement	Measures associated with management of data inventory or a data asset
DataQualityManagement	Measures associated with management of data quality
DataQualityImprovement	Measures associated with improvement of data quality
DataSecurityManagement	Measures associated with management of data security
MetadataManagement	Measures associated with management of metadata
DisputeManagement	Purposes associated with activities that manage disputes by natural
MemberPartnerManagement	Purposes associated with maintaining a registry of shareholders,
OrganisationComplianceManagement	Purposes associated with managing compliance for organisation in
OrganisationRiskManagement	Purposes associated with managing risk for organisation's activities
Personalisation	Purposes associated with creating and providing customisation based on
ServicePersonalisation	Purposes associated with providing personalisation within services or
PersonalisedBenefits	Purposes associated with creating and providing personalised benefits
ProvidePersonalisedRecommendations	Purposes associated with creating and providing personalised
ProvideEventRecommendations	Purposes associated with creating and providing personalised
ProvideProductRecommendations	Purposes associated with creating and providing product recommendations
UserInterfacePersonalisation	Purposes associated with personalisation of interfaces presented to the
PublicBenefit	Purposes undertaken and intended to provide benefit to public or society
CombatClimateChange	Purposes associated with combating the causes and consequences of
Counterterrorism	Purposes associated with activities that detect, prevent, mitigate, or
DataAltruism	Purposes associated with the voluntary sharing of data for the general
ImproveHealthcare	Purposes associated with improving healthcare systems such as for
ImprovePublicServices	Purposes associated with improving the provision of public services,
ImproveTransportMobility	Purposes associated with improving traffic, public transport systems or
ProtectionOfNationalSecurity	Purposes associated with the protection of national security
ProtectionOfPublicSecurity	Purposes associated with the protection of public security
ProvideOfficialStatistics	Purposes associated with facilitating the development, production and
PublicPolicyMaking	Purposes associated with public policy making, such as the development
RecordManagement	Purposes associated with manage creation, storage, and use of records
ResearchAndDevelopment	Purposes associated with conducting research and development for new
AcademicResearch	Purposes associated with conducting or assisting with research conducted
ScientificResearch	Purposes associated with scientific research
ServiceManagement	Purposes associated with the management of services or products
PaymentManagement	Purposes associated with processing and managing payment in relation to
RepairImpairments	Purposes associated with identifying, rectifying, or otherwise
ServiceAccessDetermination	Purposes associated with the determination of whether specific
ServiceMonitoring	Purposes associated with the monitoring of services or products to
ServiceUsageAnalytics	Purposes associated with conducting analysis and reporting related to
ServiceOptimisation	Purposes associated with optimisation of services or activities
OptimisationForConsumer	Purposes associated with optimisation of activities and services for
OptimiseUserInterface	Purposes associated with optimisation of interfaces presented to the
OptimisationForController	Purposes associated with optimisation of activities and services for
ImproveExistingProductsAndServices	Purposes associated with improving existing products and services
IncreaseServiceRobustness	Purposes associated with improving robustness and resilience of services
InternalResourceOptimisation	Purposes associated with optimisation of internal resource availability
ServiceProvision	Purposes associated with providing service or product or activities
RequestedServiceProvision	Purposes associated with delivering services as requested by user or
DeliveryOfGoods	Purposes associated with delivering goods and services requested or
SearchFunctionalities	Purposes associated with providing searching, querying, or other forms
SellProducts	Purposes associated with selling products or services
SellDataToThirdParties	Purposes associated with selling or sharing data or information to third
SellInsightsFromData	Purposes associated with selling or sharing insights obtained from
SellProductsToDataSubject	Purposes associated with selling products or services to the user,
TechnicalServiceProvision	Purposes associated with managing and providing technical processes and
ServiceRegistration	Purposes associated with registering users and collecting information
VendorManagement	Purposes associated with manage orders, payment, evaluation, and
VendorPayment	Purposes associated with managing payment of vendors
VendorRecordsManagement	Purposes associated with managing records and orders related to vendors
VendorSelectionAssessment	Purposes associated with managing selection, assessment, and evaluation
Right	The right(s) applicable, provided, or expected
ActiveRight	The right(s) applicable, provided, or expected that need to be
DataSubjectRight	The rights applicable or provided to a Data Subject
PassiveRight	The right(s) applicable, provided, or expected that are always
RiskConcept	Parent concept for combining concepts associated with risk assessment
Consequence	The consequence(s) possible or arising from specified context
ConsequenceAsSideEffect	The consequence(s) possible or arising as a side-effect of specified
ConsequenceOfFailure	The consequence(s) possible or arising from failure of specified context
ConsequenceOfSuccess	The consequence(s) possible or arising from success of specified context
Impact	The impact(s) possible or arising as a consequence from specified
Risk	A risk or possibility or uncertainty of negative effects, impacts, or
ResidualRisk	Risk remaining after treatment or mitigation
RiskLevel	The magnitude of a risk expressed as an indication to aid in its
Rule	A rule describing a process or control that directs or determines if and
AcceptableRule	A rule that is acceptable where it is either desirable if it occurs or
Obligation	A rule describing an obligation for performing an activity
Permission	A rule describing a permission to perform an activity
Recommendation	A rule describing a recommendation for performing an activity
UnacceptableRule	A rule that is unacceptable where it is not desirable if it occurs
Deterrence	A rule describing a deterrence for performing an activity
Prohibition	A rule describing a prohibition to perform an activity
Sector	Sector describes the area of application or domain that indicates or
Severity	The magnitude of being unwanted or having negative effects such as
SensitivityLevel	Sensitivity' reflects the risk of impact if not secured or utilised with
TechnicalOrganisationalMeasure	Technical and Organisational measures used to safeguard and ensure good
LegalMeasure	Legal measures used to safeguard and ensure good practices in connection
ContractualTerms	Contractual terms governing data handling within or with an entity
DataHandlingClause	Contractual clauses governing handling of data within or by an entity
LegalAgreement	A legally binding agreement
ConfidentialityAgreement	Agreements that enforce confidentiality for e
NDA	Non-disclosure Agreements e
StatisticalConfidentialityAgreement	An agreement outlining conditions, criteria, obligations,
OrganisationalMeasure	Organisational measures used to safeguard and ensure good practices in
Assessment	The document, plan, or process for assessment or determination towards a
ComplianceAssessment	Assessment regarding compliance (e
LegalComplianceAssessment	Assessment regarding legal compliance
ConformanceAssessment	Assessment regarding conformance with standards or norms or guidelines
DataInteroperabilityAssessment	Measures associated with assessment of data interoperability
DataQualityAssessment	Measures associated with assessment of data quality
DataSuitabilityAssessment	Measures associated with assessment of suitability of data for specific
EffectivenessDeterminationProcedures	Procedures intended to determine effectiveness of other measures
LegitimateInterestAssessment	Indicates an assessment regarding the use of legitimate interest as a
RiskAssessment	Assessment involving identification, analysis, and evaluation of risk
ImpactAssessment	Calculating or determining the likelihood of impact of an existing or
DataTransferImpactAssessment	Impact Assessment for conducting data transfers
PIA	Impact assessment regarding privacy risks
ReviewImpactAssessment	Procedures to review impact assessments in terms of continued validity,
RightsImpactAssessment	Impact assessment which involves determining the impact on rights and
DataBreachImpactAssessment	Impact Assessment concerning the consequences and impacts of a data
DPIA	Impact assessment determining the potential and actual impact of
FRIA	Impact assessment which assesses the potential and actual impact on
SecurityAssessment	Assessment of security intended to identify gaps, vulnerabilities,
CybersecurityAssessment	Assessment of cybersecurity capabilities in terms of vulnerabilities and
Audit	An audit is a systematic examination or evaluation of records,
InformationAudit	An audit that systematically examines the existence and use of
PersonalDataAudit	An audit that systematically examines the existence and use of personal
LegalComplianceAudit	An audit that systematically examines the state of legal compliance by
SecurityAudit	An audit that systematically examines the existence and use of security
CertificationSeal	Certifications, seals, and marks indicating compliance to regulations or
Certification	Certification mechanisms, seals, and marks for the purpose of
Seal	A seal or a mark indicating proof of certification to some certification
Consultation	Consultation is a process of receiving feedback, advice, or opinion from
ConsultationWithAuthority	Consultation with an authority or authoritative entity
ConsultationWithDataSubject	Consultation with data subject(s) or their representative(s)
ConsultationWithDataSubjectRepresentative	Consultation with representative of data subject(s)
ConsultationWithDPO	Consultation with Data Protection Officer(s)
DigitalLiteracy	Providing skills, knowledge, and understanding to enable reading,
AILiteracy	Providing skills, knowledge, and understanding to enable reading,
DataLiteracy	Providing skills, knowledge, and understanding to enable reading,
GovernanceProcedures	Procedures related to governance (e
AIGovernance	Procedures related to governance of AI, including its procurement,
ApprovalProcedure	A procedure or process for determining and managing approvals for
AssetManagementProcedures	Procedures related to management of assets
ComplianceMonitoring	Monitoring of compliance (e
DisasterRecoveryProcedures	Procedures related to management of disasters and recovery
HumanOversight	Procedures related to implementing and ensuring human oversight, which
IncidentManagementProcedures	Procedures related to management of incidents
IncidentReportingCommunication	Procedures related to management of incident reporting
Policy	A guidance document outlining any of: procedures, plans, principles,
AcceptableUsePolicy	Acceptable Use Policy (AUP) refers to conditions, contexts, or uses
DataProcessingPolicy	Policy regarding data processing activities
DataDeletionPolicy	Policy regarding deletion of data
DataErasurePolicy	Policy regarding erasure of data
DataJurisdictionPolicy	Policy specifying jurisdictional requirements for data processing
DataRestorationPolicy	Policy regarding restoration of data
DataReusePolicy	Policy regarding reuse of data i
DataStoragePolicy	Policy regarding storage of data, including the manner, duration,
InformationSecurityPolicy	Policy regarding security of information
LoggingPolicy	Policy for logging of information
MonitoringPolicy	Policy for monitoring (e
RecertificationPolicy	Policy regarding repetition or renewal of existing certification(s)
ReviewProcedure	A procedure or process that reviews the correctness and validity of
StandardsConformance	Purposes associated with activities undertaken to ensure or achieve
GuidelinesPrinciple	Guidelines or Principles regarding processing and operational measures
CodeOfConduct	A set of rules or procedures outlining the norms and practices for
Guideline	Practices that specify how activities must be conducted
Principle	A representation of values or norms that must be taken into
PrivacyByDefault	Practices regarding setting the default configurations of information
PrivacyByDesign	Practices regarding incorporating data protection and privacy in the
Standard	A set of requirements or norms that are agreed upon i
DesignStandard	A set of rules or guidelines outlining criterias for design
ManagementStandard	A management standard is a standard that establishes norms or
TechnicalStandard	A technical standard is a standard that establishes norms or
Notice	A notice is an artefact for providing information, choices, or controls
AINotice	A notice providing information regarding the particulars of an AI system
DashboardNotice	A notice that is provided within a dashboard also used for other
DataTransferNotice	Notice for the legal entity for the transfer of its data
DeviceNotice	A notice provided using the functionality provided by a device e
GraphicalNotice	A notice that uses graphical elements such as visualisations and icons
JITNotice	A notice that is provided "just in time" when collecting information or
LayeredNotice	A notice that contains layered elements
OralNotice	A notice provided orally or verbally
PostedNotice	A notice that is posted as a sign or banner
PrintedNotice	A notice that is provided in a printed form on or along with a device
PrivacyNotice	Represents a notice or document outlining information regarding privacy
ConsentNotice	A Notice for information provision associated with Consent
RightNotice	Information associated with rights, such as which rights exist, when and
RightExerciseNotice	Information associated with exercising of an active right such as where
RightFulfilmentNotice	Notice provided regarding fulfilment of a right
RightNonFulfilmentNotice	Notice provided regarding non-fulfilment of a right
SecurityIncidentNotice	A notice providing information about security incident(s)
DataBreachNotice	A notice providing information about data breach(es) i
Notification	Notification represents the provision of a notice i
SecurityIncidentNotification	Notification of information about security incident(s)
DataBreachNotification	Notification of information about data breach(es) i
RecordsOfActivities	Records of activities within some context such as maintenance tasks or
DataBreachRecord	Record of a data breach incident
DataProcessingRecord	Record of data processing, whether ex-ante or ex-post
ConsentRecord	A Record of Consent or Consent related activities
ConsentReceipt	A record of consent or consent related activities that is provided to
DataTransferRecord	Record of data transfer activities
ROPA	A Record of Processing Activities (ROPA) is a document detailing
RightExerciseRecord	Record of a Right being exercised
SecurityIncidentRecord	Record of a security incident
RightExerciseActivity	An activity representing an exercising of an active right
RightsManagement	Methods associated with rights management where 'rights' refer to
DataSubjectRightsManagement	Methods to provide, implement, and exercise data subjects' rights
IPRManagement	Management of Intellectual Property Rights with a view to identify and
PermissionManagement	Methods to obtain, provide, modify, and withdraw permissions along with
ConsentManagement	Methods to obtain, provide, modify, and withdraw consent along with
Safeguard	A safeguard is a precautionary measure for the protection against or
RegulatorySandbox	Mechanism used by regulators and businesses for gauging the
SafeguardForDataTransfer	Represents a safeguard used for data transfer
SecurityProcedure	Procedures associated with assessing, implementing, and evaluating
AuthorisationProcedure	Procedures for determining authorisation through permission or authority
CredentialManagement	Management of credentials and their use in authorisations
IdentityManagementMethod	Management of identity and identity-based processes
BackgroundChecks	Procedure where the background of an entity is assessed to identity
SecureProcessingEnvironment	A physical or virtual environment supported by organisational means that
SecurityRoleProcedures	Procedures related to security roles
ThirdPartySecurityProcedures	Procedures related to security associated with Third Parties
StaffTraining	Practices and policies regarding training of staff members
CybersecurityTraining	Training methods related to cybersecurity
DataProtectionTraining	Training intended to increase knowledge regarding data protection
EducationalTraining	Training methods that are intended to provide education on topic(s)
ProfessionalTraining	Training methods that are intended to provide professional knowledge and
SecurityKnowledgeTraining	Training intended to increase knowledge regarding security
SupportEntityDecisionMaking	Supporting entities, including individuals, in making decisions
SupportContractNegotiation	Supporting entities, including individuals, with negotiating a contract
SupportExchangeOfViews	Supporting individuals and entities in exchanging views e
SupportInformedConsentDecision	Supporting individuals with making a decision regarding their informed
PhysicalMeasure	Physical measures used to safeguard and ensure good practices in
EnvironmentalProtection	Physical protection against environmental threats such as fire, floods,
PhysicalAuthentication	Physical implementation of authentication e
PhysicalAuthorisation	Physical implementation of authorisation e
PhysicalDeviceSecurity	Physical protection for devices and equipment
PhysicalInterceptionProtection	Physical protection against interception e
PhysicalInterruptionProtection	Physical protection against interruptions e
PhysicalNetworkSecurity	Physical protection for networks and networking related infrastructure
PhysicalSecureStorage	Physical protection for storage of information or equipment e
PhysicalSupplySecurity	Physically securing the supply of resources
PhysicalSurveillance	Physically monitoring areas via surveillance
RiskMitigationMeasure	Measures intended to mitigate, minimise, or prevent risk
TechnicalMeasure	Technical measures used to safeguard and ensure good practices in
AccessControlMethod	Methods which restrict access to a place or resource
PhysicalAccessControlMethod	Access control applied for physical access e
UsageControl	Management of usage, which is intended to be broader than access control
ActivityMonitoring	Monitoring of activities including assessing whether they have been
AuthenticationProtocols	Protocols involving validation of identity i
BiometricAuthentication	Use of biometric data for authentication
CryptographicAuthentication	Use of cryptography for authentication
AuthenticationABC	Use of Attribute Based Credentials (ABC) to perform and manage
AuthenticationPABC	Use of Privacy-enhancing Attribute Based Credentials (ABC) to perform
HashMessageAuthenticationCode	Use of HMAC where message authentication code (MAC) utilise a
MessageAuthenticationCodes	Use of cryptographic methods to authenticate messages
MultiFactorAuthentication	An authentication system that uses two or more methods to authenticate
PasswordAuthentication	Use of passwords to perform authentication
SingleSignOn	Use of credentials or processes that enable using one set of credentials
ZeroKnowledgeAuthentication	Authentication using Zero-Knowledge proofs
AuthorisationProtocols	Protocols involving authorisation of roles or profiles to determine
CryptographicMethods	Use of cryptographic methods to perform tasks
AsymmetricCryptography	Use of public-key cryptography or asymmetric cryptography involving a
CryptographicKeyManagement	Management of cryptographic keys, including their generation, storage,
DifferentialPrivacy	Utilisation of differential privacy where information is shared as
DigitalSignatures	Expression and authentication of identity through digital information
HashFunctions	Use of hash functions to map information or to retrieve a prior
HomomorphicEncryption	Use of Homomorphic encryption that permits computations on encrypted
PostQuantumCryptography	Use of algorithms that are intended to be secure against cryptanalytic
PrivacyPreservingProtocol	Use of protocols designed with the intention of provided additional
PrivateInformationRetrieval	Use of cryptographic methods to retrieve a record from a system without
QuantumCryptography	Cryptographic methods that utilise quantum mechanical properties to
SecretSharingSchemes	Use of secret sharing schemes where the secret can only be reconstructed
SecureMultiPartyComputation	Use of cryptographic methods for entities to jointly compute functions
SymmetricCryptography	Use of cryptography where the same keys are utilised for encryption and
TrustedComputing	Use of cryptographic methods to restrict access and execution to trusted
TrustedExecutionEnvironment	Use of cryptographic methods to restrict access and execution to trusted
DataBackupProtocols	Protocols or plans for backing up of data
DataSanitisationTechnique	Cleaning or any removal or re-organisation of elements in data based on
DataRedaction	Removal of sensitive information from a data or document
Deidentification	Removal of identity or information to reduce identifiability
Anonymisation	Anonymisation is the process by which data is irreversibly altered in
Pseudonymisation	Pseudonymisation means the processing of personal data in such a manner
DeterministicPseudonymisation	Pseudonymisation achieved through a deterministic function
DocumentRandomisedPseudonymisation	Use of randomised pseudonymisation where the same elements are assigned
FullyRandomisedPseudonymisation	Use of randomised pseudonymisation where the same elements are assigned
MonotonicCounterPseudonymisation	A simple pseudonymisation method where identifiers are substituted by a
RNGPseudonymisation	A pseudonymisation method where identifiers are substituted by a number
DigitalRightsManagement	Management of access, use, and other operations associated with digital
Encryption	Technical measures consisting of encryption
AsymmetricEncryption	Use of asymmetric cryptography to encrypt data
EncryptionAtRest	Encryption of data when being stored (persistent encryption)
EncryptionInTransfer	Encryption of data in transit e
EncryptionInUse	Encryption of data when it is being used
EndToEndEncryption	Encrypted communications where data is encrypted by the sender and
SymmetricEncryption	Use of symmetric cryptography to encrypt data
FailSafeProtocols	Use of fail-safe measures and protocols
InformationFlowControl	Use of measures to control information flows
SecurityMethod	Methods that relate to creating and providing security
DistributedSystemSecurity	Security implementations provided using or over a distributed system
DocumentSecurity	Security measures enacted over documents to protect against tampering or
FileSystemSecurity	Security implemented over a file system
HardwareSecurityProtocols	Security protocols implemented at or within hardware
IntrusionDetectionSystem	Use of measures to detect intrusions and other unauthorised attempts to
MobilePlatformSecurity	Security implemented over a mobile platform
NetworkProxyRouting	Use of network routing using proxy
NetworkSecurityProtocols	Security implemented at or over networks protocols
OperatingSystemSecurity	Security implemented at or through operating systems
PenetrationTestingMethods	Use of penetration testing to identify weaknesses and vulnerabilities
UseSyntheticData	Use of synthetic data to preserve privacy, security, or other effects
VirtualisationSecurity	Security implemented at or through virtualised environments
VulnerabilityTestingMethods	Methods that assess or discover vulnerabilities in a system
WebBrowserSecurity	Security implemented at or over web browsers
WebSecurityProtocols	Security implemented at or over web-based protocols
WirelessSecurityProtocols	Security implemented at or over wireless communication protocols
Technology	The technology, technological implementation, or any techniques, skills,

Slots

Slot	Description
has_active_entity	indicates the entity is actively involved in specified context
has_activity_status	Indicates the status of activity of specified concept
has_address	Specifies address of a legal entity such as street address or pin code
has_algorithmic_logic	Indicates the logic used in processing such as for automated decision
has_applicability	Indicates situations where the context is not applicable, information is
has_applicable_law	Indicates applicability of a Law
has_assessment	Indicates a relevant assessment associated with the specific context
has_audit_status	Indicates the status of audit associated with specified concept
has_authority	Indicates applicability of authority for a jurisdiction
has_automation_level	Indicates the level of automation involved in implementation of the
has_compliance_status	Indicates the status of compliance of specified concept
has_conformance_status	Indicates the status of being conformant or non-conformant
has_consent_control	Specific a control associated with consent
has_consent_status	Specifies the state or status of consent
has_consequence	Indicates consequence(s) possible or arising from specified concept
has_consequence_on	Indicates the thing (e
has_contact	Specifies contact details of a legal entity such as phone or email
has_context	Indicates a purpose is restricted to the specified context(s)
has_contract_control	Indicates the contract to be used with a contract
has_contract_status	Indicates the status of the contract
has_contractual_clause	Indicates the association or involvement of specified contractual clause
has_contractual_fulfilment_status	Indicates the fulfilment status of a contract or a contractual clause
has_country	Indicates applicability of specified country
has_data	Indicates associated with Data (may or may not be personal)
has_data_controller	Indicates association with Data Controller
has_data_exporter	Indicates inclusion or applicability of a LegalEntity in the role of
has_data_importer	Indicates inclusion or applicability of a LegalEntity in the role of
has_data_processor	Indicates inclusion or applicability of a Data Processor
has_data_protection_officer	Specifies an associated data protection officer
has_data_source	Indicates the source or origin of data being processed
has_data_subject	Indicates association with Data Subject
has_data_subject_scale	Indicates the scale of data subjects
has_data_volume	Indicates the volume of data
has_deterrence	Specifies applicability or inclusion of a deterrence rule within
has_duration	Indicates information about duration
has_entity	Indicates inclusion or applicability of an entity to some concept
has_entity_control	Indicates a control or measure provided for an entity to perform the
has_entity_involvement	Indicates involvement of an entity in specified context
has_expectation	Indicates whether the specified context was expected or unexpected
has_fee	Indicates whether a fee is required for the specified context
has_frequency	Indicates the frequency with which something takes place
has_fulfilment_status	Specifies the fulfillment status associated with a rule
has_geographic_coverage	Indicates the geographic coverage (of specified context)
has_human_involvement	Indicates Involvement of humans in processing such as within automated
has_human_subject	Indicates association with Human Subject
has_identifier	Indicates an identifier associated for identification or reference
has_impact	Indicates impact(s) possible or arising as consequences from specified
has_impact_assessment	Indicates an impact assessment associated with the specific context
has_impact_on	Indicates the thing (e
has_importance	Indicates the importance for specified context or criteria
has_indication_method	Specifies the method by which an entity has indicated the specific
has_informed_status	Indicates whether an entity was informed or uninformed
has_intention	Indicates whether the specified context was intended or unintended
has_inverse_jurisdiction	Indicates the inverse jurisdiction for a given jurisdiction
has_involvement	Indicates the involvement status for the specified context
has_joint_data_controllers	Indicates inclusion or applicability of a Joint Data Controller
has_jurisdiction	Indicates applicability of specified jurisdiction
has_justification	Indicates a justification for specified concept or context
has_lawfulness	Indicates the status of being lawful or legally compliant
has_legal_basis	Indicates use or applicability of a Legal Basis
has_legal_measure	Indicates use or applicability of Legal measure
has_likelihood	Indicates the likelihood associated with a concept
has_location	Indicates information about location
has_name	Specifies name of a legal entity
has_necessity	Indicates the necessity for specified context or criteria
has_non_involved_entity	indicates the entity is not involved in specified context
has_non_personal_data_process	Indicates association with a Non-Personal Data Process
has_notice	Indicates the use or applicability of a Notice for the specified context
has_notice_icon	Indicates the concept can be represented graphically using the specified
has_notice_layer	Indicates the use of a notice layer within a notice or to associate a
has_notice_status	Indicates the status of the associated notice
has_notification_status	Indicates the status associated with a notice
has_obligation	Specifies applicability or inclusion of an obligation rule within
has_organisational_measure	Indicates use or applicability of Organisational measure
has_organisational_unit	Indicates the specified entity is a unit of the organisation
has_outcome	Indicates an outcome of specified concept or context
has_party	Indicates a legal entity involved as a party in a contract
has_passive_entity	indicates the entity is passively involved in specified context
has_permission	Specifies applicability or inclusion of a permission rule within
has_personal_data	Indicates association with Personal Data
has_personal_data_handling	Indicates association with Personal Data Handling
has_personal_data_process	Indicates association with a Personal Data Process
has_physical_measure	Indicates use or applicability of Physical measure
has_policy	Indicates policy applicable or used
has_process	Indicates association with a Process
has_processing	Indicates association with Processing
has_processing_condition	Indicates information about processing condition
has_processing_scale	Indicates the scale of processing operations
has_prohibition	Specifies applicability or inclusion of a prohibition rule within
has_purpose	Indicates association with Purpose
has_recipient	Indicates Recipient of Data
has_recipient_data_controller	Indicates inclusion or applicability of a Data Controller as a Recipient
has_recipient_third_party	Indicates inclusion or applicability of a Third Party as a Recipient of
has_recommendation	Specifies applicability or inclusion of a recommendation rule within
has_record_of_activity	Indicates a relevant record of activity
has_relation_with_data_subject	Indicates the relation between specified Entity and Data Subject
has_representative	Specifies representative of the legal entity
has_request_status	Indicates the status associated with a request
has_residual_risk	Indicates the associated risk is the remaining or residual risk from
has_responsible_entity	Specifies the indicated entity is responsible within some context
has_reuse_compatibility	Indicates the reuse compatibility for the specified context
has_right	Indicates use or applicability of Right
has_risk	Indicates applicability of Risk for this concept
has_risk_assessment	Indicates an associated risk assessment
has_risk_level	Indicates the associated risk level associated with a risk
has_rule	Specifies applicability or inclusion of a rule within specified context
has_scale	Indicates the scale of specified concept
has_scope	Indicates the scope of specified concept or context
has_sector	Indicates the purpose is associated with activities in the indicated
has_sensitivity_level	Indicates the associated level of sensitivity
has_service	Indicates associated with the specified service
has_service_consumer	Indicates the entity that consumes or receives the associated service
has_service_provider	Indicates the entity that provides the associated service
has_severity	Indicates the severity associated with a concept
has_status	Indicates the status of specified concept
has_storage_condition	Indicates information about storage condition
has_subsidiary	Indicates this entity has the specified entity as its subsidiary
has_technical_measure	Indicates use or applicability of Technical measure
has_technical_organisational_measure	Indicates use or applicability of Technical or Organisational measure
has_third_country	Indicates applicability or relevance of a 'third country'
has_third_party	Indicates association with Third Party
has_uncategorised_data	Indicates association with the specified uncategorised data
has_unstructured_data	Indicates association with the specified unstructured data
id	Stable identifier for the instance
is_after	Indicates the specified concepts is 'after' this concept in some context
is_applicable_for	Indicates the concept or information is applicable for specified context
is_authority_for	Indicates area, scope, or applicability of an Authority
is_before	Indicates the specified concepts is 'before' this concept in some
is_determined_by_entity	Indicates the context is determined by the specified entity
is_during	Indicates the specified concepts occur 'during' this concept in some
is_exercised_at	Indicates context or information about exercising a right
is_implemented_by_entity	Indicates implementation details such as entities or agents
is_implemented_using_technology	Indicates implementation details such as technologies or processes
is_indicated_at_time	Specifies the temporal information for when the entity has indicated the
is_indicated_by	Specifies entity who indicates the specific context
is_mitigated_by_measure	Indicate a risk is mitigated by specified measure
is_not_applicable_for	Indicates the concept or information is not applicable for specified
is_organisational_unit_of	Indicates this entity is an organisational unit of the specified entity
is_outside_of_location	Indicates the interpretation where the location being referenced is
is_policy_for	Indicates the context or application of policy
is_representative_for	Indicates the entity is a representative for specified entity
is_residual_risk_of	Indicates this risk is the remaining or residual risk from applying
is_subsidiary_of	Indicates this entity is the subsidiary of the specified entity
mitigates_risk	Indicates risks mitigated by this concept
supports_compliance_with	Indicate the measure is required for meeting specified requirement or

Enumerations

Enumeration	Description

Types

Type	Description
Boolean	A binary (true or false) value
Curie	a compact URI
Date	a date (year, month and day) in an idealized calendar
DateOrDatetime	Either a date or a datetime
Datetime	The combination of a date and time
Decimal	A real number with arbitrary precision that conforms to the xsd:decimal speci...
Double	A real number that conforms to the xsd:double specification
Float	A real number that conforms to the xsd:float specification
Integer	An integer
Jsonpath	A string encoding a JSON Path
Jsonpointer	A string encoding a JSON Pointer
Ncname	Prefix part of CURIE
Nodeidentifier	A URI, CURIE or BNODE that represents a node in a model
Objectidentifier	A URI or CURIE that represents an object in the model
Sparqlpath	A string encoding a SPARQL Property Path
String	A character string
Time	A time object represents a (local) time of day, independent of any particular...
Uri	a complete URI
Uriorcurie	a URI or a CURIE

Subsets

Subset	Description
CommonSubset	Entities from the DPV common semantic group
ConsentSubset	Entities from the DPV consent semantic group
EntitiesSubset	Entities from the DPV entities semantic group
LegalBasisSubset	Entities from the DPV legal_basis semantic group
PersonalDataSubset	Entities from the DPV personal_data semantic group
ProcessingSubset	Entities from the DPV processing semantic group
RightsSubset	Entities from the DPV rights semantic group
RiskNoticeSubset	Entities from the DPV risk_notice semantic group