GDRP Removal RequestSOLVE
Mar 20, 2019 2:02 PM
This isn't a technical question, but I'm hoping someone can help.
We're a US-based company what doesn't do business in the EU. Today, someone filled out our contact form with the following in the comment field:
Hi, I am concerned that your company’s information security practices may be putting my personal information at undue risk of exposure or in fact has breached its obligation to safeguard my personal information. I withdraw my consent on processing my personal data for one or more specific purposes under point (b) of Article 17(1) of the General Data Protection Regulation (EU) 2016/679. Additionally I object on grounds relating to the processing of my personal data under Article 21 of the General Data Protection Regulation (EU) 2016/679. I am requesting that your company permanently delete all personal information/accounts pertaining to my person from your systems, furthermore please opt-out my person from future data collections. I would like you to be aware at the outset, that I anticipate a reply to my request within one month as required under Article 12 of the General Data Protection Regulation (EU) 2016/679, failing which I will be forwarding my inquiry with a letter of complaint to the European Commission.
This person wasn't a previous contact. They used a Switzerland (.ch) email address, yet registered with a Tuscson AZ mailing address and phone. HubSpot identified the state IP as California. This smells like a scam, but I'm not sure what this person has to gain.
If anyone has experienced something similar, I'd like to hear about it.
Solved! Go to Solution.