What is Personally Identifiable Information (PII)?
PII is any information that can be used to identify a specific individual, including names, addresses, email addresses, phone numbers, Social Security numbers, and biometric data.
Personally Identifiable Information (PII) refers to any data that can be used, either alone or in combination with other data, to identify, contact, or locate a specific individual. PII is a broad concept used primarily in US privacy frameworks, encompassing both direct identifiers (name, SSN, passport number) and indirect identifiers (date of birth, zip code, gender) that can identify an individual when combined.
The definition of PII varies across regulations. NIST defines it as information that can be used to distinguish or trace an individual identity. GDPR uses the broader term "personal data" which includes any information relating to an identified or identifiable natural person. DPDPA defines "personal data" as any data about an individual who is identifiable by or in relation to such data.
Relevant Regulations
How IQWorks Helps
Related Terms
Sensitive Personal Data
Sensitive personal data includes special categories such as health information, biometric data, racial or ethnic origin, religious beliefs, and sexual orientation that require enhanced protection.
Data Discovery
Data discovery is the automated process of identifying and cataloging personal data across an organization technology landscape, including databases, file systems, cloud storage, and SaaS applications.
Data Classification
Data classification is the process of categorizing data by sensitivity level, type, and regulatory applicability to determine appropriate protection measures and handling procedures.