Data Subject Access Requests

Under the General Data Protection Regulation (GDPR), data subjects have clear rights:

• The right to be informed
• The right of access
• The right to rectification
• The right to erasure (also known as the right to be forgotten)
• The right to restrict processing
• The right to data portability
• The right to object
• Rights in relation to automated decision making and profiling

Organisations need to develop and put in place data rights servicing procedures to comply effectively and promptly with the GDPR provisions on data subjects’ rights. The GDPR provides individuals the right to access their data an organisation holds on them within one month of when their request is received.

HewardMills helps ensure its clients meet their obligations under the GDPR regarding Data Subject Access Requests (DSARs) to mitigate the risk of fines, enforcement action and reputational damage.

HewardMills helps its clients comply with data protection regulations, including the GDPR, ePrivacy Directive, local legislation (for multijurisdictional organisations) and cybersecurity laws, as well as with legal and regulatory requirements arising from emerging technologies such as blockchain.

We are a multidisciplinary team of data protection practitioners, lawyers, corporate governance specialists and cybersecurity experts with a wealth of knowledge delivering data protection excellence to your organisation.

If you would like to learn more about how HewardMills can help your organisation handle and process data safely, securely and responsibly in line with international regulations and policies, please get in touch via telephone (+44 20 4540 5853 or +353 1669 4642), or email dpo@hewardmills.com today.