Data subject access request

A data subject access request (DSAR) is a request submitted by an individual (data subject) to an organization to acquire the information collected and stored about them to verify the lawfulness of the processing.

A data subject can also ask for specific actions to be taken with regard to that data. For instance, they may request the deletion or correction of information, receive information on the data safeguards provided by the organization or opt out of future data collection.

Data subject access requests are a part of the data subject rights provided by the EU’s GDPR, California’s CCPA and many other privacy laws around the world.

DSARs give consumers unprecedented control over the personal information that organizations store. An organization served with a DSAR is legally obligated to fulfill these requests within a limited timeframe to avoid non-compliance.


  • 25 years of digital analytics with Brian Clifton: The real challenge for the future is to make sense of data

    Organizations are becoming more and more aware of data-driven strategies, so understanding the complexities surrounding data quality, privacy, and technological advancements becomes crucial for their future success. They also need to rely on new tools, often supported by AI, to adapt to changes in the digital analytics field. Dive into the fourth and final episode…

    Read more

  • Is Google Analytics HIPAA-compliant?

    Disclaimer: This blog post is not legal advice. Piwik PRO provides privacy-friendly analytics software, but does not provide legal consultancy. If you’d like to make sure you’re in compliance with HIPAA guidelines, we encourage you to consult an attorney. SUMMARY Healthcare organizations use analytics platforms to collect and analyze data about their patients. The data…

    Read more