Request data information from doctors and companies
Since the GDPR came into force in May 2018, you have the right to receive data from companies if this data is processed. And since this is actually always the case in some form, you can of course exercise this right. Basically, this is nothing really new, because the old BDSG was already quite strict.
With the GDPR, however, the requirements for content and scope have been further expanded. According to Art. 15 Para. 1 GDPR, data subjects (i.e. you as the person about which data is collected and processed) have the right to request information from the person responsible (each company must designate someone for this area) whether and to what extent personal data is processed, and of course whether this data is also passed on to third parties.
Request data information from doctors and companies
Since the GDPR came into force in May 2018, you have the right to receive data from companies if this data is processed. And since this is actually always the case in some form, you can of course exercise this right. Basically, this is nothing really new, because the old BDSG was already quite strict.
With the GDPR, however, the requirements for content and scope have been further expanded. According to Art. 15 Para. 1 GDPR, data subjects (i.e. you as the person about which data is collected and processed) have the right to request information from the person responsible (each company must designate someone for this area) whether and to what extent personal data is processed, and of course whether this data is also passed on to third parties.
1. What information rights do you have?
1. What information rights do you have?
The right to information is divided into two stages. In the first step, each data subject can request information from the person responsible about whether personal data is generally collected, and if this is the case, the data subject must provide information about the scope of the data collected.
In addition, the person responsible must also provide the following information (extract) for those affected:
- Purpose of data processing
- Categorization of personal data
- Other recipients of the personal data
- Storage period of the data
- Education of the person concerned about their rights to correction, deletion and restriction of the data
- Informing the person concerned about the right to lodge a complaint with the supervisory authority
- Origin of the data (unless it was collected directly from the data subject)
As a data subject, you already have very extensive rights to receive information about which data is collected and processed by you. As soon as personal data is also transferred to third countries outside the EU, you also have the right to be informed about the guarantees agreed in connection with the data transfer.
But it is really important that it is also personal and non-anonymized data. In the latter case, you would simply receive negative information.
The right to information is divided into two stages. In the first step, each data subject can request information from the person responsible about whether personal data is generally collected, and if this is the case, the data subject must provide information about the scope of the data collected.
In addition, the person responsible must also provide the following information (extract) for those affected:
- Purpose of data processing
- Categorization of personal data
- Other recipients of the personal data
- Storage period of the data
- Education of the person concerned about their rights to correction, deletion and restriction of the data
- Informing the person concerned about the right to lodge a complaint with the supervisory authority
- Origin of the data (unless it was collected directly from the data subject)
As a data subject, you already have very extensive rights to receive information about which data is collected and processed by you. As soon as personal data is also transferred to third countries outside the EU, you also have the right to be informed about the guarantees agreed in connection with the data transfer.
But it is really important that it is also personal and non-anonymized data. In the latter case, you would simply receive negative information.
2. Cost and frequency of data information
2. Cost and frequency of data information
If you request a single copy of information for yourself, the company’s representative must provide you with this data in any case free of charge. If you also need copies for other people, the company can invoice you to a reasonable extent (which is in the amount of normal administrative costs).
As far as the frequency of data information is concerned, the law does not issue a clear guideline here, but only states that data subjects can exercise their right to information at reasonable intervals free of charge. So if you request data information once a week, you will surely span the sheet here. Realistically, we keep a time frame of once a year here.
If you request data information very frequently, the person responsible for the company can refuse this to you due to unfounded or excessive requests, or invoice you accordingly. As I said, all (like many points of the GDPR) is not clearly defined.
Recital 63 of the GDPR states that you as a data subject can exercise your right to information at reasonable intervals free of charge. There are, however, some exceptions to the right to information, for example the case when the rights or freedoms of other people would be violated by the data information.
If you request a single copy of information for yourself, the company’s representative must provide you with this data in any case free of charge. If you also need copies for other people, the company can invoice you to a reasonable extent (which is in the amount of normal administrative costs).
As far as the frequency of data information is concerned, the law does not issue a clear guideline here, but only states that data subjects can exercise their right to information at reasonable intervals free of charge. So if you request data information once a week, you will surely span the sheet here. Realistically, we keep a time frame of once a year here.
If you request data information very frequently, the person responsible for the company can refuse this to you due to unfounded or excessive requests, or invoice you accordingly. As I said, all (like many points of the GDPR) is not clearly defined.
Recital 63 of the GDPR states that you as a data subject can exercise your right to information at reasonable intervals free of charge. There are, however, some exceptions to the right to information, for example the case when the rights or freedoms of other people would be violated by the data information.
3. Request Data information (sample form)
3. Request Data information (sample form)
To make the process a little easier for you, we provide a free sample form for data information as a PDF. You can either insert this in Word to edit it further, or you can use the appropriate PDF software.
By the way:
We generally do not collect any personal data from you when you visit our website. The only exceptions are if you write to us using a contact form or if you purchase one of our digital products. For contact inquiries, your data will be deleted immediately after answering your inquiry. And when purchasing digital products, we are legally obliged to keep invoices for 10 years.
However, we never pass on data to third parties, sell them, or use them to carry out marketing measures. Your data belongs to you and nobody else.
To make the process a little easier for you, we provide a free sample form for data information as a PDF. You can either insert this in Word to edit it further, or you can use the appropriate PDF software.
By the way:
We generally do not collect any personal data from you when you visit our website. The only exceptions are if you write to us using a contact form or if you purchase one of our digital products. For contact inquiries, your data will be deleted immediately after answering your inquiry. And when purchasing digital products, we are legally obliged to keep invoices for 10 years.
However, we never pass on data to third parties, sell them, or use them to carry out marketing measures. Your data belongs to you and nobody else.
Popular Posts:
5 simple security rules against phishing and spam that everyone should know
Deceptively authentic emails from your bank, DHL, or PayPal? That's phishing! Data theft and viruses are a daily threat. We'll show you 5 simple rules (2FA, password managers, etc.) to protect yourself immediately and effectively and help you spot scammers.
The 5 best tips for a clean folder structure on your PC and in the cloud
Say goodbye to file chaos! "Offer_final_v2.docx" is a thing of the past. Learn 5 simple tips for a perfect folder structure on your PC and in the cloud (OneDrive). With proper file naming and archive rules, you'll find everything instantly.
Never do the same thing again: How to record a macro in Excel
Tired of repetitive tasks in Excel? Learn how to create your first personal "magic button" with the macro recorder. Automate formatting and save hours – no programming required! Click here for easy instructions.
IMAP vs. Local Folders: The secret to your Outlook structure and why it matters
Do you know the difference between IMAP and local folders in Outlook? Incorrect use can lead to data loss! We'll explain simply what belongs where, how to clean up your mailbox, and how to archive emails securely and for the long term.
Der ultimative Effizienz-Boost: Wie Excel, Word und Outlook für Sie zusammenarbeiten
Schluss mit manuellem Kopieren! Lernen Sie, wie Sie Excel-Listen, Word-Vorlagen & Outlook verbinden, um personalisierte Serien-E-Mails automatisch zu versenden. Sparen Sie Zeit, vermeiden Sie Fehler und steigern Sie Ihre Effizienz. Hier geht's zur einfachen Anleitung!
Agentic AI: The next quantum leap in artificial intelligence?
Forget simple chatbots! Agentic AI is here: Autonomous AI that plans, learns, and solves complex tasks for you. Discover how AI agents will revolutionize the world of work and your everyday life. Are you ready for the future of artificial intelligence?
Offers 2024: Word & Excel Templates
Popular Posts:
5 simple security rules against phishing and spam that everyone should know
Deceptively authentic emails from your bank, DHL, or PayPal? That's phishing! Data theft and viruses are a daily threat. We'll show you 5 simple rules (2FA, password managers, etc.) to protect yourself immediately and effectively and help you spot scammers.
The 5 best tips for a clean folder structure on your PC and in the cloud
Say goodbye to file chaos! "Offer_final_v2.docx" is a thing of the past. Learn 5 simple tips for a perfect folder structure on your PC and in the cloud (OneDrive). With proper file naming and archive rules, you'll find everything instantly.
Never do the same thing again: How to record a macro in Excel
Tired of repetitive tasks in Excel? Learn how to create your first personal "magic button" with the macro recorder. Automate formatting and save hours – no programming required! Click here for easy instructions.
IMAP vs. Local Folders: The secret to your Outlook structure and why it matters
Do you know the difference between IMAP and local folders in Outlook? Incorrect use can lead to data loss! We'll explain simply what belongs where, how to clean up your mailbox, and how to archive emails securely and for the long term.
Der ultimative Effizienz-Boost: Wie Excel, Word und Outlook für Sie zusammenarbeiten
Schluss mit manuellem Kopieren! Lernen Sie, wie Sie Excel-Listen, Word-Vorlagen & Outlook verbinden, um personalisierte Serien-E-Mails automatisch zu versenden. Sparen Sie Zeit, vermeiden Sie Fehler und steigern Sie Ihre Effizienz. Hier geht's zur einfachen Anleitung!
Agentic AI: The next quantum leap in artificial intelligence?
Forget simple chatbots! Agentic AI is here: Autonomous AI that plans, learns, and solves complex tasks for you. Discover how AI agents will revolutionize the world of work and your everyday life. Are you ready for the future of artificial intelligence?
Offers 2024: Word & Excel Templates
