The General Data Protection Regulation, which enters into effect on May 25, 2018, goes considerably beyond existing law in setting forth individual rights that allow data subjects to control how their personal data is used. This Paper addresses an important issue for implementing individual rights – how can those companies who process data ensure that they uniquely identify data subjects when administering their data subject rights?
Please see full publication below for more information.