Nawigacja
RODO > Artyku艂 16. Prawo do sprostowania danych
Pobierz jako plik PDF

Artyku艂 16 RODO. Prawo do sprostowania danych

Article 16 GDPR. Right to rectification

Osoba, kt贸rej dane dotycz膮, ma prawo 偶膮dania od administratora niezw艂ocznego sprostowania dotycz膮cych jej danych osobowych, kt贸re s膮 nieprawid艂owe. Z uwzgl臋dnieniem cel贸w przetwarzania, osoba, kt贸rej dane dotycz膮, ma prawo 偶膮dania uzupe艂nienia niekompletnych danych osobowych, w tym poprzez przedstawienie dodatkowego o艣wiadczenia.

The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

Komentarz eksperta ISO 27701 Wytyczne & Case Law zostaw komentarz
Komentarz eksperta

(EN) The Council of Europe recommended, in 1973, that 鈥inaccurate information鈥 should be corrected in the context of data compiled in electronic data banks (Resolution on the Protection of the Privacy of Individuals vis-a-vis Electronic Data Banks in the Private Sector). So, it is not surprising that the European Union 2016 General Data Protection Regulation provides for a 鈥right to rectification鈥. The surprise comes from the absence of guidance regarding the rights and responsibilities related to the exercise of that right.


aby uzyska膰 dost臋p do pe艂nego tekstu

(EN) Author
Louis-Philippe Gratton
(EN) Louis-Philippe Gratton PhD, LLM
(EN) Privacy Expert

(EN)

Data Subject Request Letter Sample

Concern: Request to rectify inaccurate personal data

Dear Madam, Dear Sir,

You have data concerning me that are inaccurate鈥


aby uzyska膰 dost臋p do pe艂nego tekstu

(EN) Author
Louis-Philippe Gratton
(EN) Louis-Philippe Gratton PhD, LLM
(EN) Privacy Expert

(EN)

Data Subject Request Letter Sample

Concern: Request to rectify incomplete personal data

Dear Madam, Dear Sir,

You have data concerning me that are incomplete鈥


aby uzyska膰 dost臋p do pe艂nego tekstu

(EN) Author
Louis-Philippe Gratton
(EN) Louis-Philippe Gratton PhD, LLM
(EN) Privacy Expert
(EN) Author
Siarhei Varankevich
(EN) Siarhei Varankevich CIPP/E, CIPM, CIPT, MBA, FIP
FIP_IAPP
(EN) Co-Founder & CEO of Data Privacy Office LLC. Data Protection Trainer and Principal Consultant
ISO 27701

(EN) ISO/IEC 27701, adopted in 2019, added additional ISO/IEC 27002 guidance for PII controllers.

Here is the relevant paragraph to article 16 GDPR:

7.3.6 Access, correction and/or erasure

Control

The organization should implement policies, procedures and/or mechanisms to meet their obligations to PII principals to access, correct and/or erase their PII.

Implementation guidance

The organization should implement policies, procedures and/or mechanisms for enabling PII principals to obtain access to, correct and erase of their PII, if requested and without undue delay.


aby uzyska膰 dost臋p do pe艂nego tekstu

Wytyczne & Case Law zostaw komentarz
[js-disqus]