In the fourth of a series of articles based on the initial meeting of the Intelliflo GDPR Working Group to discuss the ramifications of the GDPR for financial advice firms, Rob Walton considers access and portability
A central tenet of the General Data Protection Regulation (GDPR) is affording individuals easy and timely access to their data. If a client requests their data, firms must provide it to them no later than one month after the request. There is scope for an extension where cases are more complex, since it may not be possible to source and submit such data within the time allotted. The individual should be notified of the delay and the delay must be reasonable - for example, the client should be notified of the delay within one month and the data provided within a maximum of a further tw...
To continue reading this article...
Join Professional Adviser for free
- Unlimited access to real-time news, industry insights and market intelligence
- Stay ahead of the curve with spotlights on emerging trends and technologies
- Receive breaking news stories straight to your inbox in the daily newsletters
- Make smart business decisions with the latest developments in regulation, investing retirement and protection
- Members-only access to the editor’s weekly Friday commentary
- Be the first to hear about our events and awards programmes