Data Subjects Request

Turn data subjects request into an automated workflow with a clear insight into data every step of the way!

Challenge

Data Subject Requests are one of the most difficult areas to cover under the GDPR. Companies mostly struggle with data portability and right-to-be-forgotten.

Every one of data subjects’ rights have certain specifics and require different workflows in order to register, process, fulfill and document data subject’s request. All while keeping track of response time and assuming you can locate the data in the company’s system.

Any violation of those rights provokes the highest penalties under the GDPR while the risk of a bad reputation can affect companies’ opportunity to build solid and trustworthy customer relationship.

The company is also obligated to communicate any rectification or erasure of personal data or restriction of the processing. Notification must be sent to the data subject without delay, and within one month of the receipt of the request. That is a challenge!


Solution

Data Privacy Manager is a platform for orchestration and management of data subject’s rights. It automates the entire process so that the IT systems, on which the data is stored, can execute user requests timely and accurately.

The process becomes an automated workflow giving you clear insight every step of the way, from the registration of a user request, through the process of the request approval and data processing, to the notification of the user about the outcome of the request.

Most importantly, the Data Privacy Manager represents one central place for the supervision of requests and provides DPO with all the information necessary for managing data subjects’ requests within the limits of respond date.

Combined with Privacy Portal as a customer-facing channel it gives company flawless insight into communication preferences of data subjects, their preferred language of communication, and purpose of data processing, while data subjects can opt- out as easily as they opted-in.

Benefits

AUTOMATION

Automate the entire process with Data Privacy Manager, so that the IT systems, on which the data is stored, can execute user request timely and accurately.

A CENTRAL PLACE FOR REQUESTS

Get a clear insight every step of the way, from the registration of a user request, through the request approval and data processing, to the notification of the user about the outcome of the request.

TIMELY AND ACCURATELY EXECUTE USER REQUESTS

Execute data subjects requests within the GDPR time limit for responding to the request, which is no later than one calendar month.

Personal Data Lifecycle

Collection
Interaction with Data Subjects
  • Contract
  • Consent
Lawfull Processing
Everyday Business
  • Data monetization
  • Services delivery
  • Marketing
Archiving
Lawful Basis Expiration
  • Contract Expiration
  • RTBF
  • Opt-out
Destruction
Data Destruction
  • Anonymization
  • Deletion

Business Process
(Original Purposes)


Data Retention
(Purpose change)


No Purpose

Learn how this solution helps your industry

General Data Protection Regulation (GDPR) requires that Organizations processing personal data (Data Controllers and Data Processors) maintain a register of processing activities. According to Article 6 there can be 6 possible lawful basis for personal data processing, and for Organizations to be able to declare a lawful basis for a specific processing activity an assessment needs to be done…

Would you like to continue reading? 

Get the E-book
“We have approached the process of GDPR compliance very seriously and methodically, and we wanted to have a software that will allow us to manage GDPR processes from one central point, which we managed to accomplish with Data Privacy Manager.”

Nikola Murk, Head of IT operations & infrastructure

Data Privacy Manager is available in flexible pricing options for your growing business needs