Expert Advice Community

Guest

Data subject access requests

  Quote
Guest
Guest user Created:   May 25, 2018 Last commented:   May 25, 2018

Data subject access requests

As a processor we have been requested by one of our clients (controller) to share some basic information (comprising transaction reference and email address) with their website provider. Am I correct in thinking this should be covered in the client's own privacy policy, and that any data access request relating to this shared information would be made via the client (controller)?
0 0

Assign topic to the user

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Andrei Hanganu May 25, 2018

Answer:

Yes you are right, data subject access requests are to be handled by the controllers which may ask their respective processors for information in order to be able to accurately respond to such a request.

To learn more about data subject rights check out our webinar “Data Subject Rights under the EU GDPR” https://advisera.com/eugdpracademy/webinar/data-subject-rights-under-the-eu-gdpr-free-webinar-on-demand/
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

May 25, 2018

May 25, 2018

Suggested Topics

Guest user Created:   Jul 04, 2022 EU GDPR
Replies: 1
0 0

GDPR intermediary

Guest user Created:   Jun 30, 2022 EU GDPR
Replies: 1
0 0

Laboratory space

Guest user Created:   Jun 22, 2022 EU GDPR
Replies: 1
0 0

Doubts about ODPR or GDPR