Data Usage Taxonomy
From Open Risk Manual
Definition
A Data Usage Taxonomy is a classification of distinct purposes (and their characteristics) behind Data Processing activities. Such purposes acquire special significance in the context of Data Privacy and Data Privacy Risk linked to Personal Data.
Academic Research | conduct or assist with research conducted in an academic context e.g. within universities | |
Access Control | conduct or enforce access control | |
Advertising | Advertising is a subset of Marketing. Advertising by itself does not indicate 'personalisation' i.e. personalised ads. | |
Commercial Interest | carry out activities with a commercial interest i.e. of profit or benefit to the Data Controller | |
Commercial Research | conduct research in a commercial setting e.g. in a company | |
Communication for Customer Care | communicate with users via email, phone, sms, chat or push messages regarding your requests. | |
Create Event Recommendations | create and provide personalised recommendations for events | |
Create Personalized Recommendations | create and provide personalised recommendations | |
Create Product Recommendations | create product recommendations e.g. suggest similar products | |
Customer Care | provide assistance for customer complaints and satisfaction | |
Delivery of Goods | deliver goods and services | |
Direct Marketing | carry out direct marketing i.e. marketing communicated directly to the individual | |
Fraud Prevention and Detection | detect and prevent fraud | |
Identity Verification | verify and authorise identity | |
Improve Existing Products and Services | improve existing products and services | |
Improve Internal CRM Processes | improve customer-relationship management (CRM) processes | |
Increase Service Robustness | improve the robustness and resilience of services | |
Internal Resource Optimisation | optimise internal resources used by the organisation e.g. resource usage | |
Legal Compliance | fulfill obligations or requirements towards achieving compliance with law or regulations. | |
Marketing | carry out marketing i.e. promoting, selling, and distributing a product or service | |
Non-Commercial Research | conduct research in a non-commercial setting e.g. for a non-profit-organisation (NGO) | |
Optimisation for Consumer | optimise activities and services for the consumer or user | |
Optimisation for Controller | optimise activities and services for the Data Controller | |
Optimise User Interface | optimise interfaces presented to the user | |
Payment | process users’ payment transactions. | |
Personalised Advertising | provide personalised advertising | |
Personalised Benefits | personalise benefits received by the user | |
Registration and Authentication | register, authenticate, and identify in context of a service. | |
Requested Service Provision | ||
Research and Development | conduct research and development for new methods, products, or services | |
Security | ensure and enforce security e.g. of data | |
Sell Data to Third Parties | sell data or information to third parties | |
Sell Insights from Data | sell or commercially provide insights obtained from analysis of data | |
Sell Products to Data Subject | sell products or services | |
Sell Targetted Advertisements | sell or provide targetted advertisements | |
Service Optimization | optimise service or activity | |
Service Personalization | personalise service or activity | |
Service Provision | provide service or activity | |
Social Media | market through and on social media. | |
Analytics | calculate, analyse, and report user behaviour and events for a service or product. | |
User Interface Personalisation | personalise interfaces presented to the user |
See Also