Data subject rights (special)

Contracts as legal basis for data processing

Alexander Ringer 12 September 2023

If you want to process personal data in the context of a contract or for the purpose of initiating a contract, you must observe some important regulations.

The right of access

Elke Fenk 28 August 2023

Everything you need to know about the right of access and what UK companies must do in response to requests from data subjects.

How to obtain and manage consent

Alexander Ringer 27 August 2023

The basis of consent under the UK GDPR, its rules, penalties for non-compliance, and effective strategies for managing it. Including practical examples.

How to assess restrictions of data subject rights in third countries

Olivia Satchel 11 August 2023

When it comes to comparing the data protection level in a third country in which you want to transfer personal data, Art. 23 UK GDPR is the key to assess the restriction of data subject rights. We explain how UK businesses should proceed.

Dealing with data subject requests under the UK GDPR

Evelyne Sørensen 10 July 2023

Ultimate guidance for UK businesses: How to respond correctly and in compliance with the data protection law to data subject requests.

The right to restrict processing

Evelyne Sørensen 27 June 2023

The right to restrict processing gives data subjects a supplementary possibility to exercise control and governance over their personal data. Controllers have to ensure the restriction in many ways.

The right of rectification in practice

Maryam Fazeli 26 June 2023

If a data controller processes incorrect or incomplete data, the data subject has a right to rectification. We explain what you need to bear in mind.

The right to data portability in practice

Olivia Satchel 16 June 2023

The right to data portability is intended to ensure that every data subject can demand the return of their personal data. However, the surrender of the data is subject to some conditions and restrictions.

How to comply with the Children’s Code

Olivia Satchel 30 May 2023

If you provide information society services likely to be accessed by children in the UK, the Children’s Code applies. But what regulations need to be adhered to? When do they apply? What do companies have to do to achieve compliance?

The right to erasure and the right to be forgotten

Martin Röleke 17 May 2023

When must data controllers delete personal data under the UK GDPR, and when can they delay deletion? A comprehensive guide with numerous practical tips.

What are data subject rights?

Data subjects are entitled to basic protection of their personal data by law and must be able to make free decisions about their data at all times. The United Kingdom General Data Protection Regulation (UK GDPR) gives data subjects several rights in this regard. These include the rights to information, access, erasure, data transmission, rectification, or objection.

If these rights are not comprehensively taken into account and followed up by companies, there is a risk of compensation payments and high fines.

Data subject rights

Contracts as legal basis for data processing

The right of access

How to obtain and manage consent

How to assess restrictions of data subject rights in third countries

Dealing with data subject requests under the UK GDPR

The right to restrict processing

The right of rectification in practice

The right to data portability in practice

How to comply with the Children’s Code

The right to erasure and the right to be forgotten

What are data subject rights?

Other specials

ICO fines explained

Data subject rights

Data transfer

The Information Commissioner’s Office (ICO)

Checklists and templates

Data Protection Policy

Data Processing Agreement

Law firm

Authorisation

Services

Resources

Legal

Group