# Amai/Oei/Oh! That’s personal! ## A practical guide on dealing with personal data ### Session description Researchers have the responsibility to process personal data in compliance with the GDPR. It is important to understand the principles of GDPR, and how these can be applied in the different phases of research to minimize risks, protect data subjects and process personal data in a lawful and transparent way. #### Benefits for learners After the session, participants will be able to assess the sensitivity/risks of their dataset and be able to act upon those, i.e. implementing the appropriate TOM (Technical and Organisational Measures) to mitigate/minimise these risks. #### Target audience Researchers with no or little previous knowledge on GDPR who process personal data in their research. #### Recommended pre-requisites - [GDPR intro clip](https://www.youtube.com/watch?v=egVmd_QFY_o) by Utrecht University - [GDPR section](https://ufora.ugent.be/d2l/le/content/921670/viewContent/2000580/View) and [storage section](https://ufora.ugent.be/d2l/le/content/921670/Home?itemIdentifier=D2L.LE.Content.ContentObject.ModuleCO-2000548) in the Ufora course "Fundamentals of Research Data Management" (pre-enrollment required to view links). #### Content - [Slides](https://osf.io/ypesx) - [Instructions exercise risk assessment](https://osf.io/kb2uj) - [Instructions exercise pseudonymisation](https://osf.io/dt9xc)