- Create a DSAR record that includes the identity of the data subject, their proof of identity, and the nature of the request
- Interact directly with the data subject via the platform
- Use customisable response templates such as acknowledgement of receipt, request for additional information, and final response
- Enter the subject’s address once for all correspondence, and add your signature block
- Assign request processing to the concerned entities to enable efficient collaboration
Manage DSAR responsively and transparently. See all pending, in-progress and processed requests at a glance, and monitor processing by processors in just a few clicks using our integrated workflow.
The GDPR strengthens and expands the rights and freedoms of data subjects in order to give them full control over their personal data. In addition to the right of access, erasure and rectification, the GDPR creates new rights such as the right to data portability, the right to object to profiling, and the right to restrict processing.
In this sense, the GDPR does more than just protect personal data. It establishes and protects the rights of data subjects.
The goal is to give consumers/prospects/customers control over their personal data. This is a major challenge for organisations. It requires that their Data Protection Officer (DPO) respond appropriately to requests within the allotted time whenever data has been collected or processed. Failure to comply may result in complaints and/or fines levied by the national data protection authorities, especially if sensitive data is involved.
While this may not have been a topical issue a few years ago, times have changed. Consumers are increasingly demanding when it comes to knowing what is being done with their data — and rightly so. Organisations need to take a project-focused approach to this critical task.
The ability to respond accurately and individually to the growing number of data subject requests requires time are diligence.
You must be able to provide data subjects with precise information on the processing of their data (identity of controller, DPO or subcontractor, information on data transfers and collection methods, purpose, etc.) and answer all reasonable requests.
Find out how Data Legal Drive will make it easier to manage and deal with data subject requests.