In relation to the GDPR, Data Portability is the fundamental right of the data subject (usually an individual) to move their information from one controller to another controller. This needs to be done in a ‘common format’ and within one month of the request taking place.
This can be broken down as several key requirements for an organisation. Organisation’s need to be able to:
Alongside these requirements, the individual could also expect transactional data, such as mobile phone spend, bank accounts, utility usage or store loyalty cards.
There are several questions businesses should be asking themselves for Data Portability.
We help you to identify all the personal data you hold as well as its location and how it's used, providing a solid foundation for you when responding to Data Portability requests.