Georgia has recently
adopted a new data protection law, marking a significant step towards aligning
its national regulations with international standards. This legislation
introduces significant changes and strengthens protections for data subjects.
While the Georgian law shares many similarities with the EU’s General Data
Protection Regulation (GDPR), it is crucial to recognize the differences, as
these may shape the interpretation and enforcement of data subject rights.
Understanding these nuances is essential for both data controllers and
processors.
This article discusses
the newly established right of access in Georgian data protection law from both
theoretical and practical perspectives. To ensure the right of access is
effective for data subjects, data controllers must implement specific
procedures that guarantee transparency and efficiency when responding to access
requests. This includes facilitating clear contact methods, maintaining
effective data management systems, and providing timely and comprehensible
responses within legal timeframes. Additionally, when collecting data,
controllers must ensure that data subjects are provided with all necessary
information in compliance with data protection laws.