How would you handle address data privacy in GDPR contexts?

• A. Store all possible data forever for compliance.
• B. Minimize data collection, support deletion/anonymization, proper access controls, and allow data subject rights processes.
• C. Share data with third parties freely to improve services.
• D. Only encrypt data at rest; ignore access controls.

Answer: (B)

Protecting address data under GDPR hinges on limiting what you collect, keeping data only as long as needed, giving individuals real rights over their data, and guarding who can access it. Start with data minimization: collect only what you truly need for a defined purpose, and set retention periods that match that purpose so you don’t keep information unnecessarily long. This reduces exposure and aligns with the idea that data should not be kept “just in case.”

Next, ensure you can delete or anonymize data when the purpose ends or upon a data subject’s request. Deletion removes data entirely; anonymization reduces identifiability so the information can’t be tied back to a person. Both approaches lessen risk and reflect GDPR’s emphasis on control over personal information.

Strong access controls are essential. Use the principle of least privilege, enforce robust authentication, assign roles carefully, and keep audit trails so you can track who accessed address data and when. Without proper access controls, even well-intentioned protections can fall short.

Finally, support data subject rights processes. Individuals must be able to access their data, correct inaccuracies, delete data where appropriate, object to processing, and request data portability. You should have fast, transparent procedures to respond to these requests within GDPR timelines and to manage consents and lawful bases for processing.

Why this approach fits best: it combines the core protections GDPR expects—minimizing risk through limited collection and retention, empowering individuals with rights, and hardening defenses with access controls—creating a holistic, compliant treatment of address data.

Storing data forever misses purpose limitation and retention limits and unnecessarily increases risk. Freely sharing with third parties ignores consent, purpose, and data processing agreement requirements. Relying only on encryption at rest leaves gaps—data can be exposed through inadequate access controls, transit, or processing activities. Encryption is important, but it’s not a complete solution on its own.