# The Security Implications of Data Subject Rights

**Authors:** Jatinder Singh, Jennifer Cobbe

arXiv: 1905.13005 · 2019-05-31

## TL;DR

This paper examines how data subject rights under data protection laws can inadvertently expose technical and organizational details, raising security concerns that need careful management during rights fulfillment.

## Contribution

It highlights the security risks associated with fulfilling data subject rights and emphasizes the importance of considering these implications in privacy processes.

## Key findings

- Providing data access can reveal technical infrastructure details
- Security risks must be considered in rights fulfillment processes
- Recommendations for balancing transparency and security

## Abstract

Data protection regulations give individuals rights to obtain the information that entities have on them. However, providing such information can also reveal aspects of the underlying technical infrastructure and organisational processes. This article explores the security implications this raises, and highlights the need to consider such in rights fulfillment processes.   To appear in IEEE Security & Privacy

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1905.13005/full.md

## Figures

2 figures with captions in the complete paper: https://tomesphere.com/paper/1905.13005/full.md

## References

15 references — full list in the complete paper: https://tomesphere.com/paper/1905.13005/full.md

---
Source: https://tomesphere.com/paper/1905.13005