Since the introduction of the GDPR in 2018 data subjects have exercised their rights in increasing numbers, particularly the Right of Access (Subject Access requests). Find out how you should deal with these requests. The other rights arise less frequently and will be covered in slightly less depth: right to rectification, right to erasure, right to object, right to restriction, right to data portability and automated decision making.
It is essential that all staff can recognise subject access requests and can make an initial response to them, including immediate transmission to the appropriate member of staff. It is also very important to deal with requests in a timely and sympathetic manner as the GDPR has empowered data subjects. Data subjects are often on the warpath, weaponising the rights to make your life difficult – in these cases, they are likely to complain to the ICO or rant about you on social media if they think you haven’t got it right.
This course:
- lasts three hours
- can be taken sitting at your desk (or anywhere you can connect to the Internet) – no need to travel.
- limits attendees to a maximum of 10
- allows delegates to ask questions throughout
- assumes a basic knowledge of data protection
- uses the Zoom platform
- only costs £200
- takes account of the ICO’s latest guidance
Subject Access Requests, Course content:
Topics covered include:
- What are the rights?
- When do they apply? Exemptions
- What is the first response?
- How must you respond?
- Implications for data management
- Third party data and protection of third parties
- Creating a procedure
- Staff training
At the end of the course, you will be able to create a procedure for dealing with data subject requests so that you can handle them in a consistent, efficient and sympathetic fashion.
For dates and booking please visit our course availability page.