Rights of individuals with regard to the processing of personal data

Individuals or data subjects, as found in the definitions in Regulation 679/2016, should be aware that they have rights regarding how their personal data is processed by companies. These include the right to be informed about how their data is being processed, the right of access to their personal data, the right to rectify their data if it is inaccurate or incomplete, the right to erasure of their data (this right is known as the „right to be forgotten”), the right to restrict the processing of their data, the right to object to the processing of their data, the right to request portability of their data, and the right to lodge a complaint with the data protection supervisory authority in their country of residence if they believe that their personal data is being processed unlawfully.

Individuals should also be aware that they have an obligation to provide only the personal data that is necessary to fulfill the purposes for which it is requested, and that it must be true, complete and up-to-date.

It is important for individuals to be aware of how their personal data is used by companies, and to take steps to protect it, such as by using strong passwords and other online security methods.

In conclusion, individuals should be aware of the following issues regarding the processing of personal data by companies:

  1. Purpose of processing: Companies should explain the purpose of processing individuals’ personal data, such as to offer them products or services, to send them promotional offers, or to contact them in case of problems.
  2. Types of personal data processed: Individuals should be aware of the types of personal data processed by companies, such as name, e-mail address, telephone number or payment details.
  3. Retention period: Individuals should know how long companies will keep their personal data.
  4. Rights of individuals: Individuals have the right to access, rectify or delete their personal data, object to processing or withdraw their consent. It is important that individuals are aware of these rights and can exercise them.
  5. Protection mechanisms: Individuals should be aware of the safeguards taken by companies to protect their personal data, such as encryption or multi-step authentication.
  6. Sharing data with third parties: Individuals should know if and with whom companies share their personal data, such as with business partners or advertisers.