SUBJECT ACCESS REQUESTS - NEW RIGHTS FOR THE INDIVIDUAL UNDER GDPR
Data Subject's Access to Personal Data
Individuals also have the right to access their Personal Data. They may do this in order to challenge the accuracy of such data and to request rectification of any inaccurate data. There are other reasons too, like erasure and data portability.
Erasure, or 'the Right to be Forgotten'
- Where the data is no longer needed to satisfy the purpose for which it was collected in the first place
Where an individual has withdrawn the consent initially given for collection of the data
Where the individual has successfully raised an objection to the processing
If the data is being processed unlawfully
- Where the data was collected in relation to the offer of information society services to a child
In some cases, an individual has the right to have his or her data transferred to other organisations. This is where automated processing takes place and the processing is based either on consent from the individual or on a contractual relationship between the individual and the organisation.
Please note that there may well be instances where we might charge a fee for copies of records, especially where the requests are excessive or incur significant administrative costs to IS Know How.
After you submit your request to us, we’ll get in touch directly with you to progress your Subject Access Request, using the contact details that you’ve provided and including whether or not there will be a request for a SAR Administration Fee.
What Kind of Information Can be Disclosed?
The 'Right of Access' extends to Personal Data which could include your name, identification number, contact details, bank details, race, gender, age, health status, email address, location, online identifier etc.
Any information held on an individual, is likely to be collected, stored and processed via digital or paper filing, database records, interview notes and / or e-mails referring to the individual board member, employees, customers, 3rd party suppliers and research subjects to name but a few.
What are the Timescales?
How to Make a Subject Access Request?
Complete and submit the form below or you may download and print a copy, complete it and then email or fax it as directed on the form.
Changes to these Subject Access Requests
We may alter this Subject Access Request at any time. If We do so, details of the changes will be highlighted at the top of this page and Any such changes will become binding. You are therefore advised to check this page from time to time.
This Policy has been approved and authorised by:
Mr Robert Stones
Data Protection Officer
25th May 2018
Due for Review by:
25th May 2019
If you would like to know more about how IS Know How deals with Subject Access Requests, please contact Us by telephone on 02921-679-021, or by post at Britannia House, Caerphilly Business Park, Van Road, Caerphilly, Wales, UK CF83 3GG.
For more details of the personal data that We Collect, Store and Process, the measures we have in place to protect personal data, your legal rights, and our legal obligations, please refer to our;