Navigation
RGPD > Article 16. Droit de rectification
Télécharger le PDF

Article 16 RGPD. Droit de rectification

Article 16 GDPR. Right to rectification

La personne concernée a le droit d’obtenir du responsable du traitement, dans les meilleurs délais, la rectification des données à caractère personnel la concernant qui sont inexactes. Compte tenu des finalités du traitement, la personne concernée a le droit d’obtenir que les données à caractère personnel incomplètes soient complétées, y compris en fournissant une déclaration complémentaire.

The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

Explication ISO 27701 Lignes directrices & Jurisprudence Laisser un commentaire
Explication

(EN) The Council of Europe recommended, in 1973, that “inaccurate information” should be corrected in the context of data compiled in electronic data banks (Resolution on the Protection of the Privacy of Individuals vis-a-vis Electronic Data Banks in the Private Sector). So, it is not surprising that the European Union 2016 General Data Protection Regulation provides for a “right to rectification”. The surprise comes from the absence of guidance regarding the rights and responsibilities related to the exercise of that right.

[…]


lire le texte complet

Auteur
Louis-Philippe Gratton
Louis-Philippe Gratton PhD, LLM
Expert en protection de la vie privée

(EN)

Data Subject Request Letter Sample

Concern: Request to rectify inaccurate personal data

Dear Madam, Dear Sir,

You have data concerning me that are inaccurate…

[…]


lire le texte complet

Auteur
Louis-Philippe Gratton
Louis-Philippe Gratton PhD, LLM
Expert en protection de la vie privée

(EN)

Data Subject Request Letter Sample

Concern: Request to rectify incomplete personal data

Dear Madam, Dear Sir,

You have data concerning me that are incomplete…

[…]


lire le texte complet

Auteur
Louis-Philippe Gratton
Louis-Philippe Gratton PhD, LLM
Expert en protection de la vie privée
Auteur
Siarhei Varankevich
Siarhei Varankevich CIPP/E, CIPM, CIPT, MBA, FIP
FIP_IAPP
Cofondateur & PDG, DPO LLC. Formateur en protection des données et Consultant principal
ISO 27701

(EN) ISO/IEC 27701, adopted in 2019, added additional ISO/IEC 27002 guidance for PII controllers.

Here is the relevant paragraph to article 16 GDPR:

7.3.6 Access, correction and/or erasure

Control

The organization should implement policies, procedures and/or mechanisms to meet their obligations to PII principals to access, correct and/or erase their PII.

Implementation guidance

The organization should implement policies, procedures and/or mechanisms for enabling PII principals to obtain access to, correct and erase of their PII, if requested and without undue delay.

[…]


lire le texte complet

Lignes directrices & Jurisprudence Laisser un commentaire
[js-disqus]