Data Subject Access Request is an important part of GDPR compliance. It gives individuals the right to access their personal data held by companies, organizations, and other entities.
DOs:
1. Make sure you have all the information needed to make a Data Subject Access Request, including your name, address, and contact details.
2. Follow the instructions provided by the company on how to make a request.
3. Provide the necessary proof of identity, such as a copy of your passport or driving license.
4. Keep track of your request, including the date and time it was received.
5. Follow up if you do not receive a response within the time-frame specified in the company’s policy.
DON’Ts:
1. Don’t make a request without providing proof of identity.
2. Don’t make demands or threats in order to obtain a response.
3. Don’t make multiple requests for the same data.
4. Don’t provide false or misleading information when making a request.
5. Don’t expect the company to provide personal data that is not relevant to the request.