A British researcher has uncovered an ironic security hole in the EU’s General Data Protection Regulation (GDPR) – right of access requests.
Right of access, also calledsubject access, is the part of the GDPR regulation that allows individuals to ask organisations for a copy of any data held on them.
This makes sense because, as with any user privacy system, there must be a legally enforceable mechanism which allows people to check the accuracy and quantity of personal data.
The link for this article located at Naked Security is no longer available.
