Rachael is a Senior Data Protection Consultant at URM with over 10 years’ implementation experience, both as an in-house data protection/information sharing officer and as a senior DP consultant for URM. Rachael has achieved the BCS Practitioner in Data Protection certificate and has completed a GDPR Data Protection Officer Practitioner Course, as well as being an approved trainer of the BCS Foundation Certificate in Data Protection. Rachael has assisted countless organisations in developing and implementing a strategy for compliance with relevant data protection legislation, such as the General Data Protection Regulation (GDPR). Rachael specialises in completing data protection impact assessments (DPIAs), conducting training and supporting the completion of the Records of Processing Activities (RoPA), drafting and implementing supporting GDPR policies and procedures, and managing external data subject access requests (DSARs) from receipt to disclosure.
Talk DP
Season
1
, Episode
4
Everything You Need to Know About DSARs
In this episode of InfoSec Insider – Talk DP, Rachael Salter, Senior Data Protection Consultant at URM, discusses organisations’ obligations under the General Data Protection Regulation (GDPR) when fulfilling data subject access requests (DSARs) and the challenges associated with processing these requests. Rachael leverages her 10+ years of experience working in data protection compliance to provide advice and guidance on:
- What a DSAR is and how to recognise one
- When organisations are required to redact information from the personal data provided to the data subject
- When organisations can refuse to process a DSAR and what ‘manifestly unfounded or excessive’ means in practice.