Organisations face increasing scrutiny over how they handle personal data. DSARs (data subject access requests) are a critical component of GDPR (General Data Protection Regulation) compliance, allowing individuals to access their personal data held by organisations. In this webinar, our DSAR experts will explore how organisations can effectively navigate the complexities of DSAR compliance and the benefits of outsourcing DSAR management.
We will guide you through the entire DSAR process, from verifying the requester’s identity to formally disclosing information. You will gain practical knowledge and the tools to handle DSARs efficiently while maintaining GDPR compliance and building trust with customers. This is crucial for any organisation that values privacy management and seeks to avoid hefty fines and reputational damage.
Delivered by
Dr Loredana Tassone
Managing Consultant and Head of EU and UK Representative Services, GRCI Law
Loredana oversees operations, service delivery, and management and development of the consultant team. She has more than 15 years’ experience in the fields of privacy rights, data protection and cyber security in both the private and public sectors. She is a specialist in international and European law, and a qualified attorney at law in France and Italy.
Based in Brussels, Loredana advises GRCI Law clients on a wide range of data privacy issues. She is a certified GDPR consultant, data protection officer and trainer, and has worked at the European Court of Human Rights, at the Directorate General of Human Rights and Legal Affairs of the Council of Europe, and for international law firms in the EU. Loredana’s previous experience includes advising on landmark cases brought before the European Court of Human Rights, including cases on data protection and privacy rights. She has also contributed to European capacity-building projects aimed at strengthening awareness of European legal standards, including data protection.
Loredana’s PhD thesis was on the protection of personal data processed within the framework of judicial proceedings. She has helped design and implement elearning courses and training materials on data protection and privacy, and has worked as an associate lecturer at the universities of Manchester, Salford and Strasbourg. She has contributed articles to a range of publications.
John Potts
DPO, DSAR, and Breach Support Consultant at the GRC International Group
John Potts is an experienced DPO, DSAR and breach support consultant at the GRC International Group. With extensive expertise in data subject access requests, data breach reporting and GDPR/Data Protection Act compliance, he helps organisations navigate complex data protection challenges.
Before joining the GRC International Group, John served as Head of Information Law and Security at the Metropolitan Police and held data protection and security roles within central government, including Data Protection Officer and Departmental Security Officer.
Helen Pettit
Incident and Breach Management and Data Subject Rights Consultant, GRCI Law
Helen is a compliance professional with a wide range of experience in consumer and criminal law and dispute resolution. Her key areas of focus are incident and breach management and complex DSARs. Helen has advised on a range of complex DSARs for GRCI Law clients, including a leading pizza brand and a well-known gym group. Her role involves regular liaison with the ICO on behalf of clients.
Helen has worked for Trading Standards and a construction trade body, where she was the in-house DPO. She is well placed to provide advice and guidance to clients on data protection compliance as well as implementing data protection policies and procedures, including delivery of staff training.