New ICO guidance for employers responding to data subject access requests
Noirin M. McFadden and Claude-Étienne Armingaud
Today, the UK data protection regulator, the ICO, has published guidance to assist employers in responding to data subject access requests (“DSARs”) from current and former employees. DSARs have become the primary tool for employees attempting to gain leverage against employers during a dispute or grievance process: they can be extremely time-consuming and resource intensive for employers to deal with, and it is a difficult balance to strike between upholding employees’ right of access under the UK GDPR and applying exemptions from disclosure in an appropriate way.
The new guidance covers issues that often occur when employers try to strike this balance, and notably:Read More