Recently added Tips & Advice

Most read Tips & Advice
Recently added Tips & Advice

All Domains

Latest news
- my News
Employment & HR
- Brexit
- Maternity, paternity, adoption
- Training
- Trade unions
- Termination of employment
- Retirement
- Redundancy
- Recruitment
- Pay & conditions
- News
- Legal developments
- Absence management
- HR/personal development
- Holidays
- Flexible & part-time working
- Employment status
- Employment contracts
- Discrimination
- Disciplinary, dismissal and grievance matters
- Data protection
- Working time
Health, safety & environment
- Brexit
- Contractors
- Noise
- News
- Manual handling
- Machinery
- Insurance
- Health & safety management
- Fire safety
- Environmental management
- Enforcement
- Energy
- Construction
- Pollution
- Chemicals
- Accidents
- Workplace
- Working at height
- Wildlife
- Water
- Waste
- Transport
- Tax
- Risk assessment
- PPE
- Occupational health
Running a business
- Banking, finance & insurance
- Brexit
- Property
- Office management
- News
- Insurance
- Directors' liability
- Debt recovery
- Cost cutting
- Company law
- Commercial & consumer law
- Cars & transport
- Buying/selling a company
Tax
- Extracting income from a company
- Inheritance tax
- Stamp duties
- Sole traders & partnerships
- Returns, forms & HMRC admin
- Pensions
- News
- National Insurance
- Land & buildings
- Income tax
- Brexit
- Expenses
- Enquiries & penalties
- Employment taxes
- Corporation tax
- Cars, vans and vehicles
- Capital gains tax
- Capital allowances
Technology for Business
- Apps
- Health & fitness
- Travel & transport
- Software
- Social media
- Security
- Search & SEO
- News
- Hardware
- Building & designing a website
- Entertainment
- E-mail
- E-commerce
- Culture & science
- Consumer matters
- Business affairs
- Web services
VAT
- Brexit
- Debt relief
- Enquiries and penalties
- Input VAT (VAT on purchases)
- Land & property
- News
- Output VAT (VAT on sales)
- Overseas matters
- Registration
- Returns, forms & HMRC admin
- Special schemes
- VAT rates
All Domains

May 2018

Last 7 days
Last 30 days
Last 90 days
Full year
All years

GDPR - 15.05.2018

Q&A - the GDPR and data subject access requests

Q. If an individual, such as an employee or a client, makes a data subject access request (DSAR) for their personal data using their General Data Protection Regulation (GDPR) rights, how long do we have to comply?

A. The personal data must be provided to them “without delay” and within one month of receipt of the DSAR at the latest. However, where a DSAR is complex or numerous you can extend the response period by a further two months. In this situation, you must inform the individual within one month of receipt of their DSAR and explain why the extension is necessary (see The next step ). The GDPR also states that you must provide a copy of the personal data requested free of charge - the right to charge £10 has been abolished. That said, the GDPR permits you to charge a reasonable fee when a request is manifestly unfounded or excessive, particularly if it’s repetitive. Where a fee is levied, it must be based on the actual administrative cost of providing the personal data.

For a free GDPR time extension for subject access response, visit http://tipsandadvice-business.co.uk/download (CD 19.16.08).

Under the GDPR, you must generally comply with a data subject access request (DSAR) for personal data without delay and within one month at the latest. Unless a DSAR is manifestly unfounded or excessive, the personal data must be provided free of charge.