This document sets out our policy for responding to requests for deletion of data under GDPR data protection law. This document explains the rights of the data subject in relation to data deletion and the responsibilities of Retable in responding with such a request. 2. Individual Rights
An individual has the right to erasure, also known as ‘the right to be forgotten’. The principle underpinning this right is to enable an individual to request the deletion or removal of personal data where there is no compelling reason for its continued processing.
3. When does the right to erasure apply?
As stipulated in GDPR data protection law, individuals have a right to have personal data erased and to prevent processing in specific circumstances: Where the personal data is no longer necessary in relation to the purpose for which it was originally collected/processed;
When the individual withdraws consent;
When the individual objects to the processing and there is no other legal ground for the relevantprocessing activity;
When the personal data was unlawfully processed;
5. How can data be deleted?
We will delete your data upon request (via email to firstname.lastname@example.org). This data is deleted from the system immediately and cannot be recovered by any users or Retable employees after this point. Data which has been deleted or otherwise destroyed can not be recovered at any time. Sufficient warning is given to the account administrator before data are permanently deleted. Data may still remain in the systems back-up files, which will be deleted periodically. We undertake to perform the deletion within one month (30 calendar days) and will send you a confirmation once the information has been deleted. Wherever possible, we will aim to complete the request in advance of the deadline.