The intention of the GDPR is to give individuals more control over their personal data by requiring businesses to keep their customer data secure and enabling people to exercise their right to privacy should they choose to do so.
The GDPR requires a business to ensure consumers can exercise their data privacy rights.
A consumer has the following privacy rights under the GDPR:
To be informed about how their data is being used
Have access to their personal information on request
Have a simple process available to them to request that their data be deleted or corrected for accuracy
The right to object to their data being processed and/or to restrict/limit the processing
Can request that their data is provided to them in a standard format that can be transferred elsewhere.
Check that you can meet the consumer’s rights
Use the checkpoints below to ensure your business has in place robust systems to meet compliance needs in relation to consumer privacy rights.