One of the key requirements under GDPR is the need for explicit consent to process personal data. In the context of pediatrics, obtaining consent involves getting permission from a parent or legal guardian. The consent must be specific, informed, and freely given. Practices should provide clear information about how the data will be used and ensure that guardians understand their rights.