"Individuals should have the right: a) to obtain from a data controller, or otherwise, confirmation of whether or not the data controller has data relating to them; b) to have communicated to them, data relating to them i. within a reasonable time; ii. at a charge, if any, that is not excessive; iii. in a reasonable manner; and iv. in a form that is readily intelligible to them; c) to be given reasons if a request made under subparagraphs (a) and (b) is denied, and to be able to challenge such denial; and d) to challenge data relating to them and, if the challenge is successful to have the data erased, rectified, completed or amended."
DocumentOECD: Recommendation of the Council Concerning Guidelines Governing the Protection of Privacy and Transborder Flows of Personal Data , para. 13
- Everyone who offers proof of identity has the right to know whether information concerning him/her is being processed, and to obtain it in an intelligible form.
- Everyone has the right to rectification of incorrect personal data.
- Everyone who offers proof of identity has the right to have rectifications made to information about them in the case of unlawful, unnecessary, or inaccurate entries.