GDPR is Coming
The General Data Protection Regulation (GDPR) is a holistic approach to data protection that requires businesses to adopt processes and procedures on the collection of data, and the storage and lifecycle management of the personal data of its customers, contacts and employees. And it’s having a global impact – reshaping the way organizations across the world approach data privacy.
One of the more difficult things to be compliant on is the fulfilment of Data Subject Access Requests (DSAR) – a set of rights given to EU citizens when it comes to their personal data, which include:
Right to Access
Individuals can get confirmation of what personal information is being processed, where it is being stored, and why their information is being held. If EU citizens wish to know, a Controller must provide electronic copies of this data to the individual, free of charge.
Right to be Forgotten
Individuals are entitled to have their data erased, ceased from further dissemination, and potentially have third parties halt processing of data. In the case that their data is no longer relevant to why they originally gave their information, they may also have their data erased.
Right to Data Portability
The right to data portability allows individuals to obtain and reuse their data for their own purposes across different services. It allows them to move, copy, or transfer personal data easily from one IT environment to another in a safe and secure way.
Right to Notification
In the event of a data breach, businesses are required to notify their Data Protection Authority (DPA) within 72 hours of the breach. Individuals are also entitled to be notified in the event of a breach of their personal data.
Come joins us as we host a number of sessions across Europe, where you’ll be able to:
With industry experts who will share their knowledge on the upcoming GDPR, and the impact on your business.
How Chapter 3 Data Subject Access Right will affect your business, and how FileFacets can help.
How the FileFacets platform locates & identifies Personally Identifiable Information (PII) across the enterprise.