Data Protection & Subject Access Requests (DSARs) - An Update

Introduction

The topic of subject access requests is highly controversial and is the cause of more than 40% of complaints to the ICO each year. Most recently, the Labour Party has been issued with a reprimand detailing shortcomings in its approach to this issue. Valued by data subjects as an easy way to access their personal data, dealing with such requests can often pose considerable challenges for controllers in terms of time, expense, and complexity.

This webinar summarises the key content of the ICO’s guidance note as well as recent decisions of the courts in this area, before setting out a series of steps that controllers need to take to ensure compliance.

What You Will Learn

This webinar will cover the following:

• Formalities
• How quickly must a request be dealt with?
• In what circumstances can a fee be charged?
• What does it mean to carry out a ‘reasonable search’?
• Can the controller request further clarification from the data subject?
• What is meant by ‘manifestly unfounded or excessive’?
• Exemptions
• To what extent should the rights of third parties be considered?
• When will the courts order disclosure of the identity of a third party? - Harrison v ACL [2024]
• What exemptions can be relied upon by a controller?
• Provision of information
• What information needs to be provided to the data subject?
• Is the data subject entitled to receive documents, data or both?

This pre-recorded webinar will be available to view from Monday 20th January 2025

Alternatively, you can gain access to this webinar and 1,700+ others via the MBL Webinar Subscription. Please email webinarsubscription@mblseminars.com for more details.