Don’t delete data to avoid sar
How to respond to a SAR.
If you receive a Subject Access Request, you need to respond promptly and fully. Some SARs are very annoying! If you use CCTV or phone call recording a SAR can result in a lot of effort but whatever you do not be tempted to delete this data just to avoid the time and effort in responding. You are allowed to follow your standard deletion policy, but you certainly must not delete data to avoid a full response. Rules about SAR replies are complicated so make sure you check your SAR policy or better still just call us for help. You can check the ICO guidance at: ICO SAR Guidance
If you need more convincing then take look at this example, a council worker was fined almost £2000 for deleting a phone recording. This is definitely a bad idea – IN COURT FOR DELETING DATA
Don’t forget that even if you don’t need to pay the ICO fee you will need to complete GDPR and abide by the rules. Our GDPR policies and procedures include a Subject Access Request policy and you can always call us for help. Take a look at our low-cost packs and subscriptions at: Low Cost GDPR
Good luck all.
Hope you find this useful. If you need an EU Rep, have any GDPR questions, or have received a SAR or Regulator request and need help then please contact us anytime. We are always happy to help...
Zlatko, Adam, Hristina, Marin.
As GDPR effect is growing day by day and a lot of companies are affected, we would like to present
ICO published the next chapter of the Anonymisation guidance draft : Anonymisation, pseudonymisation and privacy enhancing technologies guidance
How to ensure anonymisation is effective? The ICO is calling for views on its updated draft gui
A lot of companies are receiving SAR's almost every day. Not all of the SAR's are relevant and a lo