Pillars to GDPR Success (5 of 5): Data Access and Portability
The EU General Data Protection Regulation, or GDPR, gave consumers more rights to own their own data. The regulation requires organizations to provide access to that data at any time. The final pillar of our 5 Pillars to GDPR Compliance philosophy is providing data access and portability, as a means to respect the data subject’s rights.
This means that the data subject has full control of his or her data, and under GDPR compliance rules, any organization storing personal data must be prepared to give the individual access to his or her data upon request.
The Rights of the Data Subject
Companies must be prepared to release personal data to data subjects and offer compliance for many different reasons.
In short, if a data subject asks to access their personal data for any reason, they must be given the ability to do so. For example, if the data subject wants to change or update his or her information, the company must grant that request.
Data subjects can also exercise their right to be forgotten, which clears their personal footprint completely from the company website.
In addition, data portability means that, according to the regulation, “a data subject has the right to receive the personal data concerning him or her, in a structured, commonly used, and machine-readable format and have the right to transmit that data to another party.” As this right allows a data subject to exchange data more easily between suppliers, there’s a good chance that your customer would particularly value that kind of service and complain if you are not in a position to enact it on his behalf.
Using Talend to Achieve Access and Portability
Talend offers several tools to help companies achieve access and portability within the scope of GDPR.
Talend Data Protection and compliance solutions help companies achieve GDPR compliance. These tools allow companies to easily:
- Capture and map critical data elements as they stream in from a variety of sources.
- Design and operationalize data controls.
- Manage opt-in consent across customer-facing applications.
- And more.
In addition, organizations can use Talend Application Integration to handle data subject access requests for access, rectification, and erasure. Data portability is addressed by securely sharing personal data as files, or as real-time data services that can be delivered through a secured customer or employee portal or potentially embedded into any existing customer facing applications.
Are You Respecting the Rights of Your Data Subjects?
Data access and portability is all about an organization’s ability to provide access to user data and provide total security during data transfer. It is crucial because it protects users, which leads to a higher level of trust between the company and customer, and ultimately, better business.
Unsure if your access and portability standards meet those of the GDPR? Talend can help your company become compliant quickly and easily. To learn more about GDPR compliance, watch the entire 5 Pillars of GDPR Compliance webinar.
Ready to get started with Talend?
More related articles
- Pillars to GDPR Success (2 of 5): Data Capture and Integration
- Pillars to GDPR Success (4 of 5): Self-Service Curation and Certification
- Pillars to GDPR Success (3 of 5): Anonymize and Pseudonymize for Data Protection with Data Masking
- Preparing for GDPR
- [GDPR Step 14] How to Govern the Lifecycle of Information
- Pillars to GDPR Success (1 of 5): Data Classification and Lineage
- PCI DSS: Definition, 12 Requirements, and Compliance
- [GDPR Step 15] How to Set Up Data Sharing Agreements
- [GDPR Step 16] How to Enforce Compliance with Controls
- [GDPR Step 13] How to Manage End-User Computing
- [GDPR Step 11] How to Stitch Data Lineage
- [GDPR Step 09] How to Conduct Vendor Risk Assessments
- [GDPR Step 12] How to Govern Analytical Models
- [GDPR Step 10] How to Improve Data Quality
- [GDPR Step 08] How to Conduct Data Protection Impact Assessments
- [GDPR Step 07] How to Establish Data Masking Standards
- [GDPR Step 3] How to Confirm Data Owners
- [GDPR Step 06] How to Define Acceptable Use Standards for GDPR
- [GDPR Step 2] The Importance of Creating Data Taxonomy
- [GDPR Step 4] How to Identify Critical Datasets and Critical Data Elements
- What is Data Portability?
- [GDPR Step 01] How to Develop Policies, Standards, and Controls
- What is Data Privacy?
- [GDPR Step 5] How to Establish Data Collection Standards