General Data Protection Regulation
What is the General Data Protection Regulation (GDPR)?
GDPR is a new set of rules in the European Union designed to give residents of the EU more control over Personal Data. Its goal is to ensure that citizens and businesses in the European Union can fully benefit from the modern digital economy. According to the text, the “Regulation protects fundamental rights and freedoms of natural persons and in particular their right to the protection of personal data.” Generally, it applies to the Personal Data of EU residents and the companies that handle it. Refer to articles 1-3 of the GDPR to determine whether it applies to you.
Your Rights Under GDPR
If GDPR applies to you, you can find the complete list of data subject rights in Chapter 3 of the GDPR, or see some of the rights summarized below:
- Right to Access – You have the right to obtain information about the processing activities of a data controller and the personal data of yours that they are processing.
- Right to Rectification – The right to rectification concerns the ability to correct any inaccurate data concerning the data subject.
- Right to Erasure – This is also known as the right to be forgotten, and gives you the right to request deletion of your personal data held by the controller.
- Right to Restrict Processing – Right to restrict processing where data is inaccurate or use is unlawful or no longer needed.
- Right to Portability – You have the right to receive any personal data we have in a commonly used and machine-readable format.