GDPR rights explained
The General Data Protection Regulation (GDPR) applies to anyone in the European Economic Area and to organizations worldwide that process EEA residents’ data. It grants a set of clear rights over your personal data.
Right of access
You can ask any organization what personal data they hold about you and how they use it. They must respond within one month and provide the data in a clear format.
Right to rectification
If your data is wrong or incomplete, you can request that it be corrected. Organizations must update or complete the data without undue delay.
Right to erasure (“right to be forgotten”)
You can request deletion of your data when there is no strong legal reason to keep it — for example when consent is withdrawn, data is no longer needed, or it was processed unlawfully. This right is especially relevant for getting your information removed from data broker databases.
Right to restrict processing
In some situations you can ask that your data be stored but not actively used — for example while you contest accuracy or object to processing.
Right to data portability
You can request your data in a structured, machine-readable format and have it sent to you or to another provider where technically feasible.
Right to object
You can object to processing based on legitimate interests or to direct marketing. For direct marketing, processing must stop as soon as you object.
How to exercise your rights
Contact the organization’s data protection contact or use their privacy portal. They must respond within one month. If they do not, you can complain to your national data protection authority. Locko.AI uses GDPR-based requests where applicable when submitting removal requests to data brokers on your behalf.
Take back control of your data
Take the privacy risk assessment to see which brokers have your personal information — then let Locko handle the removals automatically.