# Amai/Oei/Oh! That’s personal!
## A practical guide on dealing with personal data
### Session description
Researchers have the responsibility to process personal data in compliance with the GDPR. It is important to understand the principles of GDPR, and how these can be applied in the different phases of research to minimize risks, protect data subjects and process personal data in a lawful and transparent way.
#### Benefits for learners
After the session, participants will be able to assess the sensitivity/risks of their dataset and be able to act upon those, i.e. implementing the appropriate TOM (Technical and Organisational Measures) to mitigate/minimise these risks.
#### Target audience
Researchers with no or little previous knowledge on GDPR who process personal data in their research.
#### Recommended pre-requisites
- [GDPR intro clip](https://www.youtube.com/watch?v=egVmd_QFY_o) by Utrecht University
- [GDPR
section](https://ufora.ugent.be/d2l/le/content/921670/viewContent/2000580/View)
and [storage
section](https://ufora.ugent.be/d2l/le/content/921670/Home?itemIdentifier=D2L.LE.Content.ContentObject.ModuleCO-2000548)
in the Ufora course "Fundamentals of Research Data Management"
(pre-enrollment required to view links).
#### Content
- [Slides](https://osf.io/ypesx)
- [Instructions exercise risk assessment](https://osf.io/kb2uj)
- [Instructions exercise pseudonymisation](https://osf.io/dt9xc)