AnsweredAssumed Answered

GDPR erasure requests - importing previously removed records

Question asked by Philippa Grover on Mar 23, 2018
Latest reply on Apr 27, 2018 by Alex Nassi

Is anyone else struggling to get their head around GDPR erasure requests?

 

Say someone requests to be erased from your systems. You follow the new legislation, process their request, and delete their data.

 

You then obtain a new database (either from a marketing tool, or via a third party), and import the data into your system. But, the list contained the details of the aforementioned individual.

 

Without having their details recorded somewhere, how would you know that they had previously requested to be removed, prior to importing them?

 

I know v8 will contain a Data Privacy Module, but I still don't see how we will get around the above problem. Has anyone else had any ideas about how to handle this, either in Sugar or outside Sugar?

 

Has anyone else thought about this?

Outcomes