"Deidentified Data"</strong> means data created using Personal Data that cannot reasonably be linked to such Personal Data, directly or indirectly;</p> <p>1.6. <strong>"GDPR"</strong> means the regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data;</p> <p>1.7. <strong>"Permitted Business Purposes"</strong> means the use of Personal Data for the reasonably necessary operational purposes, including as described in the CPRA and for the following purposes for which Veriff is processing the Personal Data: (i) ensuring compliance with applicable regulations, including retaining proof of evidence of such for compliance with its legal obligations, (ii) to establish, exercise or defend legal claim, (iii) developing, testing, improving and altering the functionality of the Service, including for machine learning, data annotation, testing and training, fraud prevention and detection purposes, and producing anonymised or anonymised and aggregated statistical reports and research. </p> <p>