What data controllers should do before receiving a subject access request
What data controllers should do before receiving a possible subject access request
As a data controller, you obviously know it: one day you may receive an access request from a data subject.
Being available to promptly comply with the request when you receive it is far from being enough. Indeed, there is much more that a data controller should do. Organizational preparation is key.
Among other things, as a data controller, you should set up an organization that allows you to do the Read more [...]