Second Edition including updated case law and legal references.
How should your company or law firm respond to requests from people who want to access their personal data?
GDPR gives individuals the right to access and seek a copy of all of the personal data your company holds on them. This may include access to emails, call recordings, CCTV footage and any other record containing their personal data.
A study showed that companies spend up to GBP1.58 million per year dealing with GDPR Data Subject Access Requests ('DSARs'/'Access Requests'). The Information Commissioner's Office receives more complaints on Access Requests than any other issue.
Access Requests are a legal minefield. If Access Requests are mishandled, they can leave companies open to fines, litigation and reputational damage.
This concise practical guide explains how to comply with Access Requests under GDPR. The book explains how to:
This book aims to put your company on the right side of GDPR Data Subject Access Requests.
ABOUT THE AUTHOR
Patrick O'Kane is a in-house barrister with a large multinational organisation. Patrick is also the author of the books 'GDPR: Fix it Fast - How to Apply GDPR to Your Company in Ten Steps' and 'A Practical Guide to GDPR in Financial Services'. He has written on Privacy for numerous journals and magazines.
CONTENTS
Chapter 1 - What is an Access Request?
Chapter 2 - Which Categories of Data Can a Person Access?
Chapter 3 - Access Requests: The Formalities
Chapter 4 - The Search
Chapter 5 - Third Party Data
Chapter 6 - Training Staff on Access Requests
Chapter 7 - Employee Access Requests
Chapter 8 - Further Rights Under GDPR
Chapter 9 - Exemptions
Chapter 10 - Frequently Asked Questions
Appendix 1 - Templates for Responding to Access Requests
Appendix 2 - Access Request Policies
Show moreSecond Edition including updated case law and legal references.
How should your company or law firm respond to requests from people who want to access their personal data?
GDPR gives individuals the right to access and seek a copy of all of the personal data your company holds on them. This may include access to emails, call recordings, CCTV footage and any other record containing their personal data.
A study showed that companies spend up to GBP1.58 million per year dealing with GDPR Data Subject Access Requests ('DSARs'/'Access Requests'). The Information Commissioner's Office receives more complaints on Access Requests than any other issue.
Access Requests are a legal minefield. If Access Requests are mishandled, they can leave companies open to fines, litigation and reputational damage.
This concise practical guide explains how to comply with Access Requests under GDPR. The book explains how to:
This book aims to put your company on the right side of GDPR Data Subject Access Requests.
ABOUT THE AUTHOR
Patrick O'Kane is a in-house barrister with a large multinational organisation. Patrick is also the author of the books 'GDPR: Fix it Fast - How to Apply GDPR to Your Company in Ten Steps' and 'A Practical Guide to GDPR in Financial Services'. He has written on Privacy for numerous journals and magazines.
CONTENTS
Chapter 1 - What is an Access Request?
Chapter 2 - Which Categories of Data Can a Person Access?
Chapter 3 - Access Requests: The Formalities
Chapter 4 - The Search
Chapter 5 - Third Party Data
Chapter 6 - Training Staff on Access Requests
Chapter 7 - Employee Access Requests
Chapter 8 - Further Rights Under GDPR
Chapter 9 - Exemptions
Chapter 10 - Frequently Asked Questions
Appendix 1 - Templates for Responding to Access Requests
Appendix 2 - Access Request Policies
Show more |
Ask a Question About this Product More... |
|
