Appendix CR - V.9.3 - Example Purpose Categories
Purpose Categories
The list below contains a list of purposes for which Personally Identifiable Information (PII) has been collected, based on input from subject matter experts. This list is neither normative, in that none of these are required purposes in any given context, nor complete, in that each purpose for each collection by each entity is contextually specific. This list is provided for convenience and demonstration purposes. It is the case that in many jurisdictions, the entity collecting PII for identified primary purposes may not use that same information without the consent of the PII Subject for secondary purposes, unless required to do so by law, and it is the case that the PII Subject should be able to deny consent for secondary purposes while still receiving core functions from the site, application or service.
# | Description | Short Code | Notes |
1. | To enable the entity to carry out the core functions of its site/app/services. | Core Function | Default Purpose |
2. | To provide contracted or requested services to the PII Subject. | Contracted Service | |
3. | To deliver contracted or requested services to the PII Subject. | Delivery | |
4. | Communicating with you about information or services you specifically request. | Contact Requested | |
5. | Providing you with a personalised experience of our site/app/service. | Personalized Experience | |
6. | Communicating with you about our other services you may be interested in. | Marketing | |
7. | Communicating with you about the services of third parties you may be interested in. | Marketing Third Parties | |
8. | Providing the information to third parties to deliver our services on our behalf. | SharingUsefor Delivery | |
9. | Providing the information to third parties to enable them to communicate with you about their own services you may be interested in. | Disclosure for Marketing | |
10. | Providing the information to third parties to enable them to deliver or improve their own services to you. | 3rd Party Disclosure for Core Function | |
12. | Complying with our legal obligations for record keeping. | Legally Required Data Retention | |
13. | Complying with our legal obligations to provide the information to law enforcement or other regulatory/government bodies. | Required by Law Enforcement or Government | |
14. | Protecting your vital and health interests. | Protecting Your Health | |
15. | Protecting our legitimate interests, yours or those of a third party. | Protecting Our Interests | |
16. | Measure or improve our performance or the delivery of our services. | Improve Performance |