Handling Data Subject Access Requests Under the GDPR

The introduction of the General Data Protection Regulation (GDPR) brought with it new rights for data subjects, giving them greater control over the way that their personal data is handled. This increased level of control and enhanced rights has led to a greater general awareness of individuals’ rights. As a result, organisations received an influx of data subject access requests (DSARs) in the wake of the GDPR, which has subsequently placed a burden on the privacy office.

Not only is the volume of DSARs an issue for organisations to overcome, but the complexity of handling data subject rights can pose a significant challenge. And this challenge is only made greater when you add the nuances of DSARs from other global data privacy laws such as the California Consumer Privacy Act (CCPA). In this webinar we discuss best practices for handling DSARs, and the legal obligations that organisations face.

​

Key Takeaways:​​

• Obligations organisations have in terms of data subject rights​
• Managing requests by third parties on behalf of the data subject​