This video is normally available to paying customers.
You may unlock this video for FREE. Enter your email address for instant access AND to receive ongoing updates and special discounts related to this topic.
Key Considerations: Ensure all key personnel understand GDPR implications.
Documentation: Document data sources, sharing, and accuracy for accountability.
Review Notices: Review and update privacy notices for GDPR compliance.
Procedures: Ensure procedures cover individual rights, including data deletion and format provision.
Main Rights: Subject access, correction of inaccuracies, data erasure, prevention of direct marketing, prevention of automated decision making.
Changes: Be aware of changes to subject access request rules under GDPR.
Handling: Handle requests promptly within the one-month timeframe.
Refusal Criteria: Manifestly unfounded or excessive requests can be charged for or refused.
Identify: Identify and document legal basis for data processing activities.
Privacy Notice: Explain legal basis in privacy notices and responses to access requests.
