The right of access in combination with the right to claim damages in GDPR can become a damages trap for companies.
GDPR gives data subjects the right to ask any company, if personal data are processed. The controller has 30 days to answer. If answer doesn’t arrive in time, a lawyer can try to get the information for the data subjects. Damages come from the lawyer’s fees. If thousands of queries are filed this can result in a catastrophe.
The General Data Protection Regulation defines principles relating to personal data processing. The controller of personal data is required to demonstrate compliance. EasyGDPR makes creating and maintaining GDPR compliance documentation easy and efficient. easyGDPR will be unveiled at Big Data World in London boot B3035.