EU General Data Protection Regulation (EU GDPR) and Data Protection Amendment Act of 2018 (DSG): Data protection applies to all processing activities with personal data.
Personal data that can no longer be attributed to a specific data subject without the need for additional information, provided that such additional information is kept separate and subject to technical and organisational measures to ensure that the personal data is not assigned to an identified or identifiable natural person. Caution: Pseudonymous data is subject to data protection!
Data that cannot be assigned to a person. Anonymous or anonymised data is excluded from data protection.
Confidential requests for personal data protection as well as notification of a (possible) data breach must be made in writing by e-mail.