The ICO’s subject access code of practice - .PDF file.
The right to find out what information an organisation holds about you is one of the cornerstones of European data protection law. This right is exercised by individuals not only for this basic purpose but also as a litigation tool. In extreme cases, the subject access right is even used just to be a nuisance. Organisations can find themselves drowning under the weight of subject access requests (SARs) if they are not adequately prepared.
The Information Commissioner’s Office (ICO) published a code of practice in August 2013, advising organisations on how to deal with SARs and suggesting a 10-step checklist approach…
If you are registered and logged in to the site, click on the link below to read the rest of the Taylor Wessing briefing. If not, please register or sign in with your details below.