Latest Blog posts
Learn the terms
Latest papers
Data Processing Inventory
03/12/2020
Guide for a successful DPO
03/12/2020
Privacy Risk Management
03/12/2020
DPM module
Data Subject Request
Turn data subjects request into an automated workflow with a clear insight into data every step of the way!
Challenge
Data Subject Requests are one of the most difficult areas to cover under the GDPR. Companies mostly struggle with data portability and right-to-be-forgotten. However, every one of the data subject rights requires different workflows to register, process, fulfill and document data subject requests. All while keeping track of response time and assuming you can locate the data in the company’s system.
Any violation of those rights provokes the highest penalties under the GDPR while the risk of a bad reputation can affect companies’ opportunity to build solid and trustworthy customer relationships.
The company is also obligated to communicate any rectification or erasure of personal data or restriction of the processing. Notification must be sent to the data subject without delay and within one month of the receipt of the request. That is a challenge!
Solution
Data Privacy Manager is a platform for orchestration and management of data subject’s rights. It automates the entire process so that the IT systems, where the data is stored, can execute user requests timely and accurately.
The process becomes an automated workflow giving you clear insight every step of the way, from the registration of a user request, through the process of the request approval and data processing, to the notification of the user about the outcome of the request.
Most importantly, the Data Privacy Manager represents one central place for the supervision of requests and provides DPO with all the information necessary for managing data subjects’ requests within the limits of the response date.
Combined with Privacy Portal as a customer-facing channel it gives company flawless insight into communication preferences of data subjects, their preferred language of communication, and the purpose of data processing, while data subjects can opt-out as easily as they opted-in.
Included functionalities:
- Track data subject requests, 1
- Delegate tasks to system owners, 2
- Integrate with a central e-mail account, 3
Benefits
Automation
Automate the entire process with Data Privacy Manager, so that the IT systems, on which the data is stored, can execute user requests timely and accurately.
A central place for requests
Get a clear insight every step of the way, from the registration of a user request, through the request approval and data processing, to the notification of the user about the outcome of the request.
Timely and accurately execute user requests
Execute data subjects requests within the GDPR time limit for responding to the request, which is no later than one calendar month.
Data Privacy Manager is available in flexible pricing options for your growing business needs
Personal data lifecycle
Collection
Interaction with data subjects
- Contract
- Consent
Lawfull Processing
Everyday business
- Data monetization
- Services delivery
- Marketing
Archiving
Lawful basis expiration
- Contract Expiration
- RTBF
- Opt-out
Destruction
Data destruction
- Anonymization
- Deletion
Business Process
(Original Purposes)
Data Retention
(Purpose change)
No Purpose
Personal data lifecycle
Business Process
(Original Purposes)
Interaction with data subjects
- Contract
- Consent
Everyday business
- Data monetization
- Services delivery
- Marketing
Data Retention
(Purpose change)
Lawful basis expiration
- Contract Expiration
- RTBF
- Opt-out
No Purpose
Data destruction
- Anonymization
- Deletion
Learn how this solution helps your industry
While Organizations have been busy collecting consents and putting together compliant Records of processing activities, the data removal remained overlooked, or maybe postponed? Most of the Organizations have by now documented data retention policies and have a good idea about how long they can keep the data. Data retention starts when one of the following scenarios happen: The initial purpose for data collection and processing has expired. Usually, a product or services contract with an individual has expired, an insurance policy has expired or individual stopped using a product or a service…
Download the papers
Solution for GDPR compliant personal Data removal
General Data Protection Regulation (GDPR) requires that Organizations processing personal data (Data Controllers and Data Processors) maintain a register of
Guide for a successful DPO
Privacy programs are yet to be established in many organizations and require further encouragement from the management. We shared 5 basic
GDPR and Direct Marketing
Communicate with your contacts in a GDPR compliant way The application of the GDPR principles in modern digital and direct marketing has
Data Processing Inventory
Data processing inventory is in the heart of every privacy program because it all starts with understanding and recording personal
Privacy Risk Management
What do you have to take into account when managing privacy risks? Can you really avoid all risks? Might there
Solution for GDPR compliant personal Data removal
General Data Protection Regulation (GDPR) requires that Organizations processing personal data (Data Controllers and Data Processors) maintain a register of
Get your free Data Privacy Manager trial
Try Data Privacy Manager and experience how you can simplify managing records of processing activities, third-parties, or data subject requests!
Services
Menu
Resources
Menu
Latest blog posts
Latest blog posts