This is way off what I do, but I’m not sure anyone in my work properly knows either.
Could someone explain in laymans terms what it is and who it’s likely to affect?
as far as I can see it’s essentially personal data management, but you hae to prove that, if requested by an individual, you have securely removed them from your database?
We’re a contractor, dont do much in the way of cold calling, and numbers we do get are normally in the public domain anyway. how does it fit with maintaining a database of existing client numbers and potential clients?
what about email enquiries from potential clients and communications between us and our existing clients? all contain personally identifiable information, are we expected to log deletion of these if requested to do so?
I can potentially see a situation where a company has an employee leave, and they contact us and others requesting that we remove that individual’s information from our data. would we now be require to provide copies of what we have and proof of deletion?
thanks if anyone can explain further.