Data Subject Access Requests: Compliance, Record Retention, Customers vs. Employees, GDPR, and U.S. State Law Mandates
A live 90-minute CLE video webinar with interactive Q&A
This CLE webinar will provide corporate counsel with best practices on compliance with data subject access requests (DSARs) under the GDPR, CCPA, CPRA, and other privacy laws. The panel will discuss current activity under the GDPR and the potential for abuse, how best to differentiate employee DSARs from consumer requests, and technology requirements for automating complex employee DSARs.
- Data subject asset requests
- General Data Protection Regulation
- CCPA and CPRA
- Other privacy laws
- Employee requests vs. consumer requests
The panel will review these and other relevant topics:
- How can an individual make a DSAR with an organization?
- How long does an organization have to comply with a DSAR?
- How should a business respond to a DSAR request? Does the company have to provide a consumer with every piece of personal data it has?
- What are special issues and considerations to keep in mind?
- What are steps organizations can take to prepare?
Glenn A. Brown
Squire Patton Boggs
A senior member of the firm’s Data Privacy & Cybersecurity Practice Group, Mr. Brown provides... | Read More
A senior member of the firm’s Data Privacy & Cybersecurity Practice Group, Mr. Brown provides business-oriented advice to clients in numerous industries on data privacy and regulatory compliance matters, including regulatory investigations and examinations. He has experience driving privacy and compliance priorities within organizations and providing strategic counsel regarding privacy, compliance and risk to support the growth and success of the business. Mr. Brown also has deep experience advising clients regarding compliance with many of the U.S. federal and state privacy laws, including the California Consumer Privacy Act, the Fair Credit Reporting Act, the Gramm-Leach-Bliley Act and the Driver’s Privacy Protection Act. He is familiar with the legislative and regulatory landscape in the U.S. and the EU and assists clients with developing strategies to address new developments. Having served in-house in the capacity of Associate General Counsel and Chief Compliance Officer for more than 10 years, Mr. Brown has a first-hand understanding of the day-to-day issues faced by clients when creating corporate privacy programs, implementing corporate compliance systems and responding to government investigations and examinations.Close
Partner; Chair of GDPR Compliance & International Privacy
Ms. Kagan combines her in-depth knowledge of privacy and data security regulations and best practices, both domestic... | Read More
Ms. Kagan combines her in-depth knowledge of privacy and data security regulations and best practices, both domestic and international, with her keen understanding of emerging and information technologies to provide clients with practical advice on how to design and implement their products and services, consummate their M&A transactions and engage third-party vendors in the U.S. and abroad. Over the past few years, she has assisted more than 80 companies, from U.S.-based multinationals to startups, on their path to compliance with GDPR. Ms. Kagan leverages her transactional experience leading M&A and tech transactions as well as her ability to break down complex concepts into easy-to-understand action items to provide effective, ongoing counsel to clients in their day-to-day operations. Ms. Kagan is certified as a Fellow of Information Privacy (FIP) by the International Association of Privacy Professionals (IAPP), a designation signifying comprehensive knowledge of privacy and data protection laws. She has also been certified by IAPP as a Certified Information Privacy Manager (CIPM) and a Certified Information Privacy Professional in the laws of the United States – private sector (CIPP/US), the laws of the European Union (CIPP/E) and by the PECB as a Certified Data Protection Officer (CDPO).Close