FAQs about data requests
FAQs about data requests and Connectid Business
Q: What is a DSAR?
A: A DSAR or ‘data subject access request’ is an individual’s method of retrieving any and all personal information that you possess about them.
Q: Who can makes data requests (DSARs)?
A: Any individual has the right to request any and all personal information that you hold on them from you at any time.
Q: What counts as personal data/information?
A: Personal data/information includes but is not limited to a person’s name, address, email address, phone number, race, nationality, ethnicity, origin, color, religious or political beliefs or associations, age, sex, sexual orientation, marital status, family status, identifying number, code, symbol, fingerprints, blood type, inherited characteristics, health care history including information on physical/mental disability, educational, financial, criminal and employment history, others’ opinion about the individual, and personal views -except those about other individuals.
Q: If a person requests all of their data how long will it take me to find, organize and deliver all of that?
A: It may take 30-40 hours if done manually. Connectid Business can help.
Q: Is it true that individuals have the right to make data requests (DSARs) at any time and can do so by email, traditional mail, in person, over the phone, or via social media?
A: Yes, but adding a Connectid Business request portal to your privacy policy can prevent data requests from arriving from all directions. Requests received through it are structured, simple and logged for audit purposes.
Q: How much time do I have to respond to DSARs?
A: You must respond within 30 days.
Q: Will I be fined if I don’t respond?
A: Yes.