Ethyca Team
June 2, 2020Data Subject Requests (DSRs)
DSRs (also known as DSARs or even SARs, depending where in the world you are) are a core competence for any business wishing to be compliant with GDPR or the CCPA. They are a key piece of data privacy activity, and getting them right can pose a significant challenge for businesses of all kinds.
DSRs (also known as DSARs or even SARs, depending where in the world you are) are a core competence for any business wishing to be compliant with GDPR or the CCPA. They are a key piece of data privacy activity, and getting them right can pose a significant challenge for businesses of all kinds.
Most simply, a DSR is when a consumer requests access or modification to the data that a business holds on them. There are a few different types of DSRs, and the ones that businesses are required to process vary by region. Check out the table below for a quick primer:
Types of Data Subject Requests by Region
| Type of request | Details | Required by CCPA? | Required by GDPR? |
| Access request | A request to view the data the business holds on an individual. | ||
| Rectification request | A request to make a modification of the data a business holds on the individual | ||
| Erasure request | A request to scrub all the data a business holds on the individual | ||
| “Do Not Sell My Info” request | A request to exclude all data for a given individual from sale to third parties. |
Data Subject Requests form the core of a robust privacy operation for any business. But how do consumers feel about the value of this access? Do DSRs help them trust a business more? Below, you can check out Ethyca CEO Cillian Kieran and University of Zurich Marketing & Privacy Expert Anne Scherer in conversation about the role of DSRs in boosting consumer perception.
AI data becomes legal liability: Impact of the EU AI Act
Read MoreThe EU AI Act’s transparency rules hit August 2, 2025, and most organizations aren’t ready for the data disclosures, documentation, and legal risk they bring
Engineering Data Trust at Scale: A Conversation with Adrian Galvan, Senior Software Engineer
Read MoreAdrian Galvan builds scalable, privacy-first integrations at Ethyca.
From Paper to Power: Reflections on the 2025 Consero CPO Summit
Read MoreAt the Consero CPO Summit, it was clear: privacy leaders are shifting from compliance enforcers to strategic enablers of growth and AI readiness.
JustPark Chooses Ethyca to Power Global Privacy and Data Governance
Read MoreJustPark has selected Ethyca to power its privacy and data governance, enabling trusted, consent-driven data control as the company scales globally.
Closing the AI Accountability Gap: Solving Governance with Data Infrastructure
Read MoreWithout infrastructure to enforce it, AI governance becomes costly theater destined to fail at scale.
The Engineer’s Burden: Why Trustworthy AI Starts with the Data Layer
Read MoreTrustworthy AI begins with engineers ensuring clean, governed data at the source.
Ready to get started?
Our team of data privacy devotees would love to show you how Ethyca helps engineers deploy CCPA, GDPR, and LGPD privacy compliance deep into business systems. Let’s chat!
Speak with UsSign up to our Newsletter
Stay informed with the latest in privacy compliance. Get expert insights, updates on evolving regulations, and tips on automating data protection with Ethyca’s trusted solutions.
