The Data Subject Access Request Form is a crucial document required for compliance with both EU GDPR and Austrian data protection legislation. It is used when individuals wish to exercise their fundamental right to access personal data held about them by organizations. The form must be provided by all entities processing personal data in Austria, regardless of their size or sector. It should collect sufficient information to verify the requester's identity according to Austrian legal standards, specify the scope of the request, and include appropriate privacy notices. The document must be available in German and may be provided in other languages, though German remains the legally binding version. Organizations must process these requests within 30 days under GDPR, making a standardized form essential for efficient handling.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
1. Data Subject Information: Essential personal details of the individual making the request, including full name, contact information, and any reference numbers if they are an existing customer/employee
2. Verification of Identity: Section specifying what identification documents are required to verify the requester's identity in accordance with GDPR requirements
3. Request Details: Specific information about what personal data is being requested, including relevant time periods and types of data
4. Format Preferences: How the data subject would like to receive their information (e.g., electronic format, hard copy)
5. Declaration: Statement confirming that the information provided is accurate and that the individual understands how their information will be used
1. Representative Information: Only required if the request is being made by someone acting on behalf of the data subject, including details of the representative and their authority to act
2. Specific Department Selection: Optional section for large organizations where the data subject can indicate specific departments that might hold their data
3. Previous Requests: Section to indicate if any previous DSARs have been made and their dates, useful for organizations tracking repeat requests
4. Urgency Information: Optional section for cases where expedited processing is requested, allowing the data subject to explain why
1. Identity Verification Requirements: List of acceptable identification documents and requirements for identity verification
2. Privacy Notice: Information about how the personal data provided in the form will be processed
3. Authorization Form: Template for authorizing a third party to make the request on behalf of the data subject
Find the exact document you need
Data Subject Rights Request Form
An Austrian-compliant GDPR Data Subject Rights Request Form enabling individuals to exercise their data protection rights under EU and Austrian law.
Download
Data Subject Access Request Form
An Austrian-compliant GDPR Data Subject Access Request Form enabling individuals to request access to their personal data under EU and Austrian data protection laws.
Download
Genie’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; Genie’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)
.png)