Special category of personal data — health, biometrics, race, religion, sexual orientation, precise geolocation, etc.
SPI (CCPA/CPRA) and Special Category Data (GDPR Art. 9) cover personal data warranting heightened protection: racial/ethnic origin, political opinions, religious beliefs, trade-union membership, genetic/biometric data, health data, sex life or orientation, and (under CPRA) SSN, driver's license, financial account, precise geolocation, contents of communications.
Run a free ComplianceIQ audit against GDPR and we'll surface every gap on this — and the other controls auditors flag — with the exact clause references to fix.