Data Privacy - Right of Access Request
You have a data privacy rights!
IData supports the principles outlined in the European Union (EU) General Data Protection Regulation (GDPR). IData also believes these principals should be applied to all people (not just data subjects under GDPR). The GDPR regulation includes a Right of Access policy that grants individuals that have data either processed or controlled by a vendor like IData to make the following requests:
- the purposes of the processing;
- the categories of personal data concerned;
- the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
- where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
- the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
- the right to lodge a complaint with a supervisory authority;
- where the personal data are not collected from the data subject, any available information as to their source;
- the existence of automated decision-making, including profiling, and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.