The term ‘Data owner’ has gained relevance in recent years. A few years back i.e., before the tech giants came into light, people were not so aware as to how crucial information were they sharing or how relevant their personal information could be.
To everyone’s surprise, data of personal information can be used in various ways including eventually guiding a person’s choices. For instance, if an Individual shares or allows their location access, they are often shown discounts offered by the nearby stores. To add to this, based on the previous purchase you are given a recommendation. So much as these all features enhance the existing technology and experience, these can also be intruding on one’s privacy.
It expresses the unfairness people feel about an asymmetrical marketplace in which we know little about the data we share but the companies that receive the data can profit by extracting marketable information. There is a requirement for governance to provide clear demarcation with respect to data processing, usage & storage
A survey by Insight Networks revealed 79% of consumers wanted compensation when their data is shared. Treating our data as our property has an understandable appeal. Alan Westin identified an essential aspect of privacy, a right “to control, edit, manage, and delete information about [individuals] and decide when, how, and to what extent information is communicated to others.
What is GDPR?
Data protection is a basic right in the European Union, and the General Data Protection Regulation (GDPR) provides the new framework for safeguarding that right. It is not without shortcomings, but it is a very good foundation for users, allowing Europeans to regain control over their personal data.
Based on the above, GDPR (General Data Protection Regulation) has incorporated the following rights of data owners.
The Right to be Informed
Information about the processing of the personal data of an individual shall be provided to him or her at the time the data is collected and within a reasonable time. The individual has the right to be informed about the implications of disclosing such information. The reason for processing the data should be stated clearly.
The Right of Access
A person’s right to access his or her personal information, which he or she may have shared, should be guaranteed. However, exercising such a right should not infringe on others’ rights, such as trade secrets or intellectual property, particularly the copyright that protects the software.
The Right to Rectification
To increase personal data control, an individual should be authorized to receive his or her personal data for the purpose of correcting wrong or incomplete information.
The Right to Erasure
Individuals shall also have the right to have their personal data destroyed and no longer processed if the data is no longer necessary for the purposes for which it was acquired or otherwise processed, or if they have withdrawn their consent to the processing.
The Right to Restrict Processing
The individual shall have a right to restrict processing of his/her personal information where
- The data’s accuracy is disputed
- the processing is illegal and opposed by the individual
- the data is no longer needed or
- the individual has complained
The Right to Data Portability.
When personal data submitted by an individual with his or her consent is processed by automated means, the individual should be able to receive that data. It should not apply to processing that is required to comply with legal responsibilities.
The Right to Object
The individual has the right to object to the processing of his or her personal data on grounds relating to his or her particular circumstances, in which case no further processing of such data will take place unless there are compelling legitimate grounds for doing so in the public interest or in the performance of official duties.
The individual has the right not to be subjected to a decision based exclusively on automated processing, including profiling, that has legal consequences for him or her or otherwise has a significant impact on him or her. The right is not applicable if the choice is needed to engage in a contract, is required by law, or if the individual has given their consent.
However, GDPR is not applicable across the globe. Most countries like India, Australia, etc. are introducing data protection laws based upon GDPR which makes it one of the crucial documents for the people.
Data will assist you in enhancing the quality of life for those you support: One of the most important reasons for businesses to use data is to improve quality. An efficient data system can help your organization improve the quality of people’s lives by allowing you to measure and act. It is our duty and moral right to give a direction to upcoming generations to come by ensuring the methods in place for policing the data.