Data minimization
Home » The GDPR » Main Principles » Data minimization

Bud P. Bruegger (ULD)

Acknowledgements: The author thankfully acknowledges the contribution by Andrés Chomczyk Penedo (VUB) who wrote an analysis of this principle as input to the here presented description.

The following discusses the principle of data minimization that is defined in Art. 5(1)(c) GDPR.

Data minimization at a glance:

Data minimization restricts the data that is collected and used to those adequate, relevant and limited to what is necessary in relation to the purposes. The limitation to the necessary has two aspects:

  • data volume (or more precisely, information content) and
  • duration of storage.

Consequently, as little data as necessary shall be processed (and stored) for as short a time period as possible while still achieving the stated purposes.

Skip to content