Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.


Status message

Start your free, no obligation 5-day trial to continue exploring with full access.

Responding to ‘right of access’ requests under GDPR

Jaclyn Jaeger | January 9, 2018

Much of the concern around the EU’s General Data Protection Regulation has focused on the potentially astronomical fines—up to 4% of global turnover—a company could suffer for failing to meet the GDPR’s stringent data privacy requirements. Of course, the key to avoiding those fines is preventing a GDPR violation in the first place.

At its core, GDPR is about protecting and strengthening individual control over the use of personal data for citizens in the European Union. As such, it applies to any company that collects or processes personal data on EU citizens. “The bottom line is that if your company is marketing, selling, or otherwise doing anything with European personal data, GDPR is something you will need to comply with,” Sonia Cheng, senior director at FTI Technology, said during a recent Compliance Week webinar.

Among the most onerous requirements under the GDPR from a compliance and operational standpoint will be responding to “right of access” requests from...

Read this single article for $49, or click the subscribe button below to review subscription options.

Enjoy unlimited access to thousands of articles, browse five years of digital magazines, qualify for reduced admission to events, and more.