Fundamental data protection right enabling an individual to access their personal data
POPULARITY
Welcome to The Weekly Sceptic, episode 74! This week: -Toby has all the gossip from Liz Truss's ‘PopCon' event -A criminal who gamed the asylum system commits a despicable chemical attack, yet Gillian Keegan and others claim this is “not really about asylum” -MP Mike Freer steps down due to death threats and an arson attack -Some Premier League clubs appear to be spying on fans for wrongthink, in a massive story broken by the Free Speech Union -Tucker Carlson visits Russia, seemingly to record an interview with Vladimir Putin -Tony Blair issues his leadership manual, which many take to be a guide for Keir Starmer — Plus Peak Woke and extra content for our premium subscribers! Sign up for all the extra content on our new platform, BASED, here: https://basedmedia.org/ This week's sponsor is Thor Holt! https://www.linkedin.com/in/thorholt WhatsApp: 07906 321593 To advertise to our large and discerning audience (1.3 million downloads and counting!), drop Toby a line: weeklysceptic@gmail.com Donate to the Daily Sceptic here: https://dailysceptic.org/donate/ Join the Free Speech Union here: https://www.freespeechunion.org/join Listen to Nick's other podcast The Current Thing here: https://podcasts.apple.com/gb/podcast/the-current-thing/id1671573905 Subscribe to Nick's Substack here: https://nickdixon.substack.com Help Nick keep both podcasts going by buying a coffee here: https://www.buymeacoffee.com/nickdixon Submit a Subject Access Request to your Premiership club and the Premier League to find out if you've been spied on by the Stadium Stasi here www.freespeechunion.org/sar/ Music by Tinderella Produced by http://podscapers.com
In early 2022 Sibyl was working for Cornerstones Literary Consultancy as one of their ‘Core Editors'. She had been working with them without issue for about a year. Then, in May, odd things started to happen. Management told her without warning that the client she was working for no longer required her services. About a week later she noticed she had been removed from the Editors' page on the Cornerstones website. When Sibyl enquired about this, she was told that it was ‘unlikely' that more projects would be fed her way. Confused and distressed, Sibyl filed a Subject Access Request which revealed that a member of staff at Cornerstones took objection to the gender critical views she had expressed in her Twitter account (i.e. her belief that sex is immutable and determined from conception). Cornerstones proceeded to immediately halt any work she was doing for them by lying to both her and their client, and then effectively terminated Sibyl.Have a listen to find out what happened next. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit juliebindel.substack.com/subscribe
In early 2022, Sibyl Ruth was working for Cornerstones Literary Consultancy as one of their ‘core editors'. Odd things began to happen in May when she was informed that her client no longer required her services. Sibyl then found out that her profile had been removed from the Cornerstones Editors' page. The next thing she knew, the company had halted any work that Sibyl was doing for them and had effectively terminated her. Ultimately a Subject Access Request revealed that a member of staff had objected to Sibyl's gender critical views as expressed on Twitter. This was a total shock for Sibyl since, although she is a principled and proud feminist, she has always been open to discussion, debate and compromise; but her termination by Cornerstones was sudden and brutal. On the advice of friends, Sibyl contact the Free Speech Union where she quickly realised that that she wasn't alone and that this was part of a larger pattern; what listeners will recognise immediately as cancel culture or, in this case, the new ‘purification' of the publishing world. Towards the end of our conversation, and following the controversy at Calderdale library services, we touch on the latest trend of certain local authorities hiding books that don't align with current ideology. Sibyl provides some helpful context to the phenomenon, explaining how library workers are often caught in a bind (pun intended!) where customer facing staff may be left to cope with little to no relevant training. If any listeners would like to support Sibyl, then do visit her crowd funder. As Sibyl emphasises during the episode, she is hugely grateful to every single person who has helped her in this campaign.
Since the introduction of the EU General Data Protection Regulation (GDPR) in 2018, employees have had the right to request access to their personal data from their employer using a Data Subject Access Request (DSAR).In this podcast Ciara Duggan and Oscar Poku members of the Data Protection team at Clarkslegal discuss DSARs in an employment law context, as they often appear where there is on ongoing dispute between an employee and their employer. They will explain what exactly a DSAR is, how one is made, and how companies should respond if they receive one. If you have any questions at all about any aspect of the DSAR process, or need some advice on how to respond to a DSAR, please contact our Data Protection lawyers for advice.
The Paris Smith Employment Podcast is a regular podcast that discusses all things related to employment law. The podcast is hosted by Charlotte Farrell and Ryan Mitchell, both are lawyers at Paris Smith LLP. In today's episode, they discuss subject access requests and the key things businesses need to know about them. The GDPR was introduced in 2018 and has led to individuals becoming much more aware of their rights regarding their personal data. As a result, Paris Smith has seen more people making subject access requests. You can find out more info here: https://parissmith.co.uk/your-business/commercial-law/data-protection-and-gdpr/ 01:00:00 - The right to access personal data held by organisations is a legal right given to individuals. 02:00:00 - Personal data is any information that relates to an identified or identifiable living individual. 06:30:00 - Anonymised data can be excluded from a subject access request. 07:00:00 - Subject access requests are being used more often as a way to find information for employment tribunal claims. 07:54:00 - The main use for subject access requests in a commercial setting is to upgrade complaints to "super complaints." 09:00:00 - The main points to consider when dealing with a subject access request are verifying the requester's identity, diarising key dates, and trying to locate the requested information. 11:17:00 - Subject access requests are usually free, except for when they are excessive. If someone refuses to pay or withdraws their request, businesses may have trouble recovering costs. 13:38:00 - The business doesn't have to send everything to the individual who they find. Someone needs to go through it and identify any documents which don't need to be disclosed. 15:00:00 - Organisations need to include a cover letter with personal data when sending it to someone in response to a subject access request. 16:20:00 - Employees use subject access requests to check their personal data is being processed correctly and tactically. 18:16:00 - The government is proposing to decrease the threshold for an organisation being able to refuse to respond to a subject access request, or to be able to charge a reasonable fee. 19:19:00 - The word vexatious could potentially help to stop requests where the person is only using it to cause trouble for their employer or ex-employer. 19:50:00 - The top tip for dealing with subject access requests is to have a written procedure and use systems which allow for personal data to be easily searched, reviewed and extracted. 21:07:00 - HR and line managers should train all staff on the GDPR and data protection issues, including subject access requests. Staff should be aware of what they can and cannot do with personal information. Deleted emails are still searchable. 23:25:00 - The risks of getting subject access requests wrong include complaints to the Information Commissioner's Office and investigations which can lead to instructions on how to correct procedures.
In this episode, Lucinda talks to Mary Asante from HR Independents, about the role that HR plays in effective data protection, the guidance you need when it comes to GDPR compliance, and why it matters so much when it comes to your business's reputation and credibility. KEY TAKEAWAYS Data security is about protecting valuable information from unauthorised access, preserving the integrity of the data and ensuring that the data is available to authorised users when needed. As a consultant, data breach may result in damage to your reputation and decrease your clients confidence in your ability to protect their valuable information, which could therefore lead to loss of clients and business. Record keeping and data cleansing in line with employment, financial and health and safety legislation is key to remaining GDPR compliant. Subject Access Request – data subjects can ask to see information that organisations hold on them. This must be provided to the data subject within 30 days of receipt. If the request is complex, the 30 day period can be extended for a further two months BEST MOMENTS 'As consultants we use technology for our businesses all the time. That's why protecting our devices is very important' 'Previously you had HR records in a locked filing cabinet!' 'You should be quite careful about who you give administrator status to. It's a great responsibility' 'Policies and procedures don't fail. What fails are the people implementing the policies and procedures' VALUABLE RESOURCES The HR Uprising Podcast | Apple | Spotify | Stitcher Join The HR Uprising LinkedIn Group Introducing the new Actus Academy: your on-demand e-learning platform! Virtual Training Programmes: How to be a Change Superhero Hybrid People Management Change Superhero Resources: Book: How To Be A Change Superhero – by Lucinda Carney Free Change Toolkit: www.changesuperhero.com HR's Role In episodes: Sponsoring Overseas Workers – with Ruth Cornish IR35 - with Mary Asante Recruitment Essentials – with Katy McMinn ABOUT THE GUEST Mary has worked across the full HR Spectrum and has supported businesses in different sectors, predominantly start-ups, SMEs and in the IT sector. In addition to HR, Mary has a broad range of skills, knowledge and qualifications in Information & Cyber security, and Health and Safety. Also, she is a Chartered Fellow of CIPD and CISM and a Lead ISO27001 Auditor. Lastly, Mary runs her own consultancy and specialises in coaching and leadership development. Mary Asante at HR Independents: https://hrindependents.co.uk/author/maryasante/ Connect with Mary Asante on Twitter ABOUT THE HOST Lucinda Carney is a Business Psychologist with 15 years in Senior Corporate L&D roles and a further 10 as CEO of Actus Software where she worked closely with HR colleagues helping them to solve the same challenges across a huge range of industries. It was this breadth of experience that inspired Lucinda to set up the HR Uprising community to facilitate greater collaboration across HR professionals in different sectors, helping them to ‘rise up' together. “If you look up, you rise up” CONTACT METHOD Join the LinkedIn community - https://www.linkedin.com/groups/13714397/ Email: Lucinda@advancechange.co.uk Linked In: https://www.linkedin.com/in/lucindacarney/ Twitter: @lucindacarney Instagram: @hruprising Facebook: @hruprising YouTube: Channel See omnystudio.com/listener for privacy information.
Before engaging with lawyers, Amber discusses two options that can be pursued to gather information on your financial situation if you feel stuck, confined, and in-prison by your current financial investment circumstances - one of which includes ordering a Data Subject Access Request (DSAR). In this episode of The Great Fraud Fightback series Amber shares her experience and findings of the DSAR ordered as part of her legal case against rogue financial advisors and companies.Follow Expats in Dubai | Behind the Scenes on all social platforms:Twitter: https://twitter.com/AmberWaheedInstagram: https://www.instagram.com/expatsindubai.behindthescenes/LinkedIn: http://Amber Waheed | LinkedInFind out more information at:https://www.businesssculpting.com/podcast
In episode 70 of Employment Law Matters, you’ll learn what the new Information Commissioner’s Office Guidance says about:-1) What amounts to a ‘manifestly excessive’ SAR?2) What is a ‘reasonable fee’ for complying with a manifestly excessive or unfounded SAR?3) Stopping the clock when clarification of the SAR is required.Find the Guidance at https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/right-of-access/Listen to Daniel Barnett on LBC, the UK’s largest commercial talk radio station. Join him every Saturday from 9pm for the LBC Legal Hour. Listen live on FM 97.3, DAB radio, online at lbc.co.uk or via the Global Player App. Listen to his latest show using the Global Catchup Player.See all Daniel Barnett’s books here.Get high-level access to barrister Daniel Barnett, for answers to your most complex HR and employment law problems. Visit http://www.hrinnercircle.co.uk for more information. Thank you for listening and please leave a review if you found this helpful. Subscribe to Employment Law Matters to automatically receive new episodes every Tuesday. If you have a question, or any feedback, please email podcast@danielbarnett.co.uk or tweet @daniel_barnett . © Employment Law Services Limited. Any information on this podcast is for general guidance only. Please see our full terms and disclaimer.
In this, the second of two consecutive episodes, Daniel Barnett of Outer Temple Chambers and Emma Erskine-Fox of TLT Solicitors (@emmafoxlaw) discuss the GDPR, two years after it came into force. In this second part, you’ll learn:-· things employers need to search for· definiting the search parameters· dealing with requests for common names or initials· redaction· answers to ten questions tweeted in before recording the podcast Get high-level access to barrister Daniel Barnett, for answers to your most complex HR and employment law problems. Visit http://www.hrinnercircle.co.uk for more information. Thank you for listening and please leave a review if you found this helpful. Subscribe to Employment Law Matters to automatically receive new episodes every Tuesday. If you have a question, or any feedback, please email podcast@danielbarnett.co.uk or tweet @daniel_barnett . © Employment Law Services Limited. Any information on this podcast is for general guidance only. Please see our full terms and disclaimer.
In this, the first of two episodes, Daniel Barnett of Outer Temple Chambers and Emma Erskine-Fox of TLT Solicitors (@emmafoxlaw) discuss the GDPR, two years after it came into force.In this first part, you’ll learn:-· the difference between the GDPR and the Data Protection Act 2018· what sort of prosecutions and fines have been issued in the last two years· how long HR Professionals have to keep records for· whether requests have to say they are data protection requests· what to do with people who put in multiple, or ‘grudge’, requests· the circumstances when employers can refuse to respond· how long employers have to reply to subject access requests Get high-level access to barrister Daniel Barnett, for answers to your most complex HR and employment law problems. Visit http://www.hrinnercircle.co.uk for more information. Thank you for listening and please leave a review if you found this helpful. Subscribe to Employment Law Matters to automatically receive new episodes every Tuesday. If you have a question, or any feedback, please email podcast@danielbarnett.co.uk or tweet @daniel_barnett . © Employment Law Services Limited. Any information on this podcast is for general guidance only. Please see our full terms and disclaimer.
In this episode we are joined by Simon Hinks and Toni Vitale. This episode is packed with practical advice around dealing with Subject Access Requests. We take a close look at the GDPR right to be informed and best practices when dealing with a Subject Access Request (SAR). How to identify a Subject Access Request? We discuss fear's around engaging with data subjects who make a SAR as well as creating processes to deal with a requests.Toni Vitale is Partner and the Head of Data Protection at JMW Solicitors LLP (https://www.jmw.co.uk/). Toni provides legal advice to clients on data protection and privacy (including the GDPR, e-privacy, & PECR), net neutrality, information and reputation management and cybersecurity. Simon Hinks of PMA Limited (http://www.p-m-a.co.uk/). Simon helps businesses with their GDPR headaches to ensure they are compliant within the data protection regulatory framework.
In this week’s episode Tom is joined by Nathan Kinch.Nathan is the CEO of Greater Than X. He's the creator of Data Trust by Design and dabbles in startup investments when he can. He's spent the bulk of his career grappling with the complexity and nuance of the rapidly evolving personal information economy. He's led work for governments, big tech, banks, teclos, startups, as well as research and policy institutes. He writes often and speaks at events all around the world. He lives most days like it's a holiday with his beautiful family on the Gold Coast.Nathan discusses the value of trust in the information economy and why he believes companies which win user trust will win the future.
The data privacy space has exploded since the GDPR came into effect and there are lots of great tools out there to assist organisations to comply with ever more complex regulations.Today Tom is joined by Richard Merrygold to discuss when does automation make sense. What compliance obligations are prime for automation as well as discussing some of the key qualities that a data protection officer should possess.Richard is co-founder of i-STORM Solutions Ltd, a boutique consultancy which specialises in providing data protection and information security consultancy and solutions to a wide range of organisations across the UK and Europe.https://istormsolutions.co.uk/
In today's digital age, we're constantly being bombarded with advertising and our data is being used as a currency. We catch up with serial entrepreneurs Tom Holder and Gilbert Hill about their new start-up Tapmydata, who are driven by their mission to put data and privacy back in the hands of the people. Tom co-founded a VentureTech company Simpleweb and Gilbert exited successfully from Cookiepedia. We posed the question, how is it different starting up now compared to the first time around. Tapmydata is innovating in the PrivTech sector, by utilising the blockchain, using 'Tap' tokens and funky merch to reward people for requesting to take back control of their data. For organisations, Tapmydata make the process of fulfilling a Subject Access Request for data easy and straightforward to do. A podcast by Ollie Collard (enterpriseorchard.co.uk) and Andrew Parsonage (extraudionary.co.uk) curated for the start-up community - or anyone with ambitions to be their own boss. We offer advice and inspiration through the stories of others.We focus on the reality of being an entrepreneur through their experiences - good and bad - offering a reminder to listeners that they're not alone in riding this emotional rollercoaster. Get your inspirational kicks and an injection of reality fortnightly on a Tuesday.
Discover the two types of Privilege that applies in the employment setting.how to qualify for ‘without prejudice’ protectionwill an advice provided by a non-legally-qualified HR professional qualify for a privilege?can you refuse a Subject Access Request?Are you a smart, ambitious HR Professional? If so, learn more about Daniel Barnett’s exclusive membership club to help boost your career and develop your business. http://www.hrinnercircle.co.uk. Thank you for listening and please leave a review if you found this helpful. Subscribe to Employment Law Matters to automatically receive new episodes every Tuesday.If you have a question, or any feedback, please email podcast@danielbarnett.co.uk or tweet @daniel_barnett . © Employment Law Services Limited. Any information on this podcast is for general guidance only. Please see our full terms and disclaimer.
Following his dismissal, Bruce is annoyed with SHIELD and phones HR. During the call he is upset and complaining about the way he has been treated and mentions he wants to see information that supports the allegations made. He finishes the call by vowing to “make SHIELD sorry” for messing with him (with flecks of green appearing in his eyes)! The next day, an email is received from Betty Ross on behalf of Mr Banner requesting copies of his personnel files relating to the disciplinary offence.
In this episode of the podcast I cover the basics which employers need to consider with regards to Subject Access Requests when received from employees. In this episode I will cover: A background to the law. What you need to consider at the outset. The time limit for responding. The type of data you have to search for. What you have to provide to the employee. Exemptions when you do not have to disclose the data. Action Points Have a person or persons within your organisation who are responsible for data and compliance with subject access requests. Create a checklist or utilise the resources from the ico to create a workflow to follow if someone makes a request. Seek advice before rejecting a request or requiring a fee to be paid. Resources https://ico.org.uk/ Right of Access for Employees GDPR Overview for Employers GDPR Privacy Policy GDPR: Action List for Employers – episode 90 Please do leave any comments, ideas and best practice below. Please ensure that any comments are respectful to all views and opinions. As part of our HR Harbour annual subscription service for employers we provide guidance and training for employers, supervisors and managers. If you would like to know more about the HR Harbour Service and how you can get unlimited support from as little as £198 per month please contact me for a no obligation discussion - alison@realemploymentlawadvice.co.uk or you can find full details here: HR Harbour Don't forget you can contact us by telephone 01983 897003, 01722 653001 or 023 8098 2006
GDPR Now! brought to you by This is DPO. Subject access requests, personal data and the case of Rudd v Bridle with Ashley Winton and Laura Scaife. About this episode: Dr Rudd served a subject access request on Mr Bridle, and was not satisfied with the information he received back. Amongst allegations of fraud and conspiracy, the issue went to court. Who was the controller, and did the journalism and regulatory exemptions apply? One of the key issues was – what is personal data? The judge reached a conclusion, but was he right? Guests: Ashley Winton, McDermott, Will & Emery London: +44 20 7577 6939 https://www.mwe.com/people/winton-ashley/ Dr. Laura Scaife, McDermott, Will & Emery London: +44 20 7577 6934 https://www.mwe.com/people/dr-laura-scaife/ http://www.privacypractice.co.uk/ Host: Mark Sherwood-Edwards of This Is DPO. www.thisisdpo.co.uk Email: mse@thisisdpo.co.uk Telephone: 07748 761972 Material referred to: Rudd v Bridle https://www.bailii.org/ew/cases/EWHC/QB/2019/893.html. For a written analysis of the case: https://thisisdpo.co.uk/2019/07/12/durant-rides-again-subject-access-requests-and-personal-data-revisited-in-rudd-v-bridle/ Contact details You can contact the show at info@thisisdpo.co.uk. If you have questions, comments, suggestions for topics, or would like to appear on the show, please contact us on the email above. Special Guests: Ashley Winton and Laura Scaife.
TechLaw10 hosts Jonathan Armstrong and Eric Sinrod discuss legal issues related to information technology. In this episode, Jonathan and Eric discuss government entities, including the Metropolitan Police in London, and the fallout when they do not handle requests about privacy concerns in a timely manner.
Coming up in this week's episode of the GDPR Weekly Show: An update on the Marriott Hotel data breach, Kent County Council data breach of adoptive parents, GDPR Canada style - a look at PIPEDA, Builder fined for not complying with Subject Access Request
Business Connections Live - The UK's Leading Online Business TV Channel
GDPR Where Is Your Personal Data Coming From? GDPR Where Is Your Personal Data Coming From? Are businesses putting their head in the sand about DataControl? On this edition of Business Connections Live Steve Hyland talks to Linda Bazant about what businesses need to do to make sure that they are compliant for GDPR when it comes into force on 25th May 2018. GDPR what does this mean GDPR tightens up the current Data Protection Act. Due to the exponential growth of the internet and the fact that we are now using data online, in Apps, on mobile phones, tablets, social media and online behavioural advertising data management is vital. Also, the regulation will give Individuals additional rights over their data including the right not to be charged for making a Subject Access Request. They also have the Right to be Forgotten which means they can ask you to delete all data that you hold on them. What do you need to do Now is the time to audit your business to ensure that you know: GDPR Where personal data is coming from?: What you do with it? – (databases, paper files); Who you share it with? (third parties): That your third parties are also GDPR compliant. GDPR will be the new Health & Safety! Responsibility for data protection must be from board level down and all staff must be fully trained and GDPR aware in their daily work routines. GDPR Benefits to the individual GDPR gives Individuals back control over their personal data and how it may be collected and used. They will be made aware of their new rights post May 2018 and any business that is not compliant and commits serious data breaches risks fines of up to to £17 million or 4% of your gross annual turnover, whichever is the greater. This applies to all business regardless of size from big corporates to SMEs. Linda Bazant Linda Bazant is an Entrepreneur and Barrister. She is a member of Gray’s Inn and the Bar Association of Commerce and Finance in Industry. Specialising in corporate and media law with special emphasis on compliance and corporate governance, she advises major blue-chip companies on the implementation of legal process and procedures. Currently, she is focusing on advising businesses on the new General Data Protection Regulation (GDPR) which comes into force on 25th May 2018 and the effect of the legislation on businesses pre and post Brexit. On this edition of Business Connections Live, Linda will explain: Why getting your GDPR compliance right is so important Why you need to consolidate your databases The importance of knowing who you share personal data with The need to update your third party contracts to ensure compliance with GDPR Why you need to update your Privacy Notice on your Website How to start your GDPR audit Learn the business fundamentals on how your business can achieve: Compliance with GDPR A better understanding of your customer and their new rights Up to date documentation that is GDPR compliant An understanding of legitimate business interests An understanding of the definition of consent Fully aware staff that live, eat and breathe GDPR For more great information visit our Guests website or follow them on Social Media.Website: http://lindabazant.com/ Twitter: https://twitter.com/lindabazant Blog: http://lindabazant.com/blog/ LinkedIn: https://www.linkedin.com/in/lindabazant/
Hot Topics in GDPR - Part Two. I talk about some of the common questions I'm hearing in the GDPR world and also recommend some great tools I've seen recently. Topics include managers becoming the DPO, American companies needing to be compliant, Subject Access Request tools and the use of health data in the workplace. Show Notes
We discuss subject access requests and give practical tips for employers on how to deal with such requests from current and former employees. We also take a look at the key points on subject access requests that came out of the recent Court of Appeal decision in Dawson-Damer v Taylor Wessing.
TechLaw10 hosts Jonathan Armstrong and Eric Sinrod discuss legal issues related to information technology. In this episode, Jonathan and Eric discuss compliance issues related to subject access requests.