Charge for a Data Subject Request GDPR

By default you can not charge a fee for data subject requests. However the GDPR does state that when requests are manifestly unfounded, excessive or repetitive you can either charge ‘a reasonable fee’ or reject it.

These exceptions should be used with caution, though. GDPR doesn’t give specific definitions or examples of what counts as manifestly unfounded, excessive or repetitive, and you should be able provide a justification. It is not permitted to have a blanket policy for determining the acceptability of requests you must consider each request on separately.

Feel free to check our GDPR Questions and Answers section for further GDPR related information.