How Would You Respond to a "Right to Be Forgotten" Request from an Ex-Employee?

Welcome!

Share and discuss the best content and new marketing ideas, build your professional profile and become a better marketer together.

All Posts People Badges

Tags (View all)

Data Privacy IDT Tech Privacy DSR Data Mapping

About this forum

How Would You Respond to a "Right to Be Forgotten" Request from an Ex-Employee?

DSR

35 Views

CKonnect

An ex-employee sends your organization a formal request to erase all their personal data under the "Right to be Forgotten." You realize some of their data is tied to internal documentation, audit logs, and past email threads essential for ongoing regulatory compliance and internal investigations.

How would you respond to this request?

What legal basis would you use to accept or deny the request?
Which exceptions apply (if any)?
What would your response email to the data subject broadly include?

Be specific about the legal reasoning (under GDPR or DPDPA), and highlight any operational steps you'd take before responding.

Enjoying the discussion? Don't just read, join in!

Create an account today to enjoy exclusive features and engage with our awesome community!

Related Posts		Replies	Views	Activity
Can You Deny a DSR if the Request is Weaponized? DSR		0 May 25	29
You’ve Received a Vague Data Access Request — What Now? DSR		0 May 25	48

Welcome!

This question has been flagged

Enjoying the discussion? Don't just read, join in!

Follow us