A few days ago I sent a GDPR request to some company to delete my personal data. They said to install their app and send a ticket from the app. The email was sent from the email address to which the account is registered. Is this even legal?
A few days ago I sent a GDPR request to some company to delete my personal data. They said to install their app and send a ticket from the app. The email was sent from the email address to which the account is registered. Is this even legal?
Actually, the customer is already getting undue hassle, while the company is just breaking the law. Why can’t we just expect better?
Nobody broke the law lol.
I believe they have like a month to comply.
The just asked for a ticket in the app, to make their lifes easier. If OP doesn’t want to, they still have to comply though.
Now I remember why I hate working directly with customers.
deleted by creator
According to my training when I was handling my workplace’s GDPR request email companies have 30 days to respond. Meaning they could simply have a bot respond to all incoming emails on day 29 and say “we’re reviewing your request” and be in compliance for a while longer