Rights and responsibilities

MODULE CONTENTS

This module focuses on the fundamental rights of individuals with regard to the protection of personal data and the responsibilities of organizations to ensure compliant and ethical management of information. It explores essential rights such as the right of access, rectification, erasure, restriction of processing, portability and opposition, while detailing the obligations of companies to protect these rights and comply with current legislation.

LEARNING OBJECTIVES

  • Understand the rights of individuals with regard to personal data protection.
  • Learn how to exercise rights of access, rectification, erasure and restriction of processing.
  • Discover the responsibilities of organizations in managing and protecting personal data.
  • Learn how organizations can ensure data transparency and security.
  • Master the steps to follow in the event of a data breach, and the measures to take to comply with current legislation.

Rights & responsibilities

The protection of personal data is based on a set of rights granted to individuals and responsibilities incumbent on organizations. Individuals have fundamental rights such as the right of access, enabling them to find out what information is held on them, the right of rectification to correct inaccurate data, and the right to erasure, often referred to as the "right to be forgotten", enabling them to request the deletion of their data under certain conditions. Other rights include limitation of processing, data portability, and the right to object to the use of their personal data, notably for direct marketing purposes.

Organizations, for their part, must guarantee transparency in data management, protect this information against any breach and secure its processing. They are also obliged to report any data breaches to the relevant authorities and to the individuals concerned, in a timely manner. By respecting these rights and responsibilities, companies strengthen user trust and comply with international legislation such as the GDPR.

This regulatory framework aims to protect individuals' privacy while ensuring that organizations manage information ethically and responsibly.