This time we talk about the kinds of processes you will need for GDPR and how to approach the documentation of them. We also take you through our Subject Access Request document in detail. Processes you will need for GDPR include: Data mapping Data Protection Impact Assessment Subject Access Request
Post archive - subject access request
Context: In order to further promote transparency and clarity the information which individuals can receive should be clearly explained. The Article 29 Working Party (European Data Protection Board) recommends in particular that the difference between the types of data that an individual can receive using the portability right or the access
Context: A fundamental, under-pining concept for the GDPR (outlined in Article 15) is that personal data is the property of the individual. This ownership is enshrined in the right of access which gives the individual the ability to see how, where and why data about them is processed.
Context: At the core of the GDPR is the intention to give control of personal data to the individual to who it relates. In order to do this the GDPR describes certain ‘rights’ that the data subject has in controlling their data. One of the main ways in which these