The GDPR sets out the rights data subjects have in relation to their personal data, the proper exercise of which allows them to have a better understanding of, and more control over, their personal data. The GDPR obliges organisations to provide transparency on their data processing methods and restore individuals’ sense of control over their personal data. It sets time limits for organisations to respond to subject access requests and introduces new rights, such as the right to data portability, that address some of the outstanding issues that have arisen since the development of the DPD.

From an organisational point of view, the key issue is to fully understand these new or extended rights, and to determine ...

Get EU General Data Protection Regulation (GDPR), third edition - An Implementation and Compliance Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.