[reposted from my LinkedIn account]
I’m sure I’ve mentioned this before (but that sort of thing never stops me banging on about stuff) but whenever I read recital 63 of the GDPR it irritates me, because a comma is in the wrong place. The result is that the clause in question is slightly nonsensical. It reads:
A data subject should have the right of access to personal data which have been collected concerning him or her, and to exercise that right easily and at reasonable intervals, in order to be aware of, and verify, the lawfulness of the processing.
The literal reading of that clause is that the right of access exists in order that a data subject can be “aware of the lawfulness” of processing and “verify the lawfulness” of processing. The latter is fine on its own but what does the former mean? And if one becomes “aware of the lawfulness” of the processing then why should one then “verify” it?
Surely the need is to be aware of the processing, and then verify its lawfulness?
Clearly, the comma should be moved, so it says
…in order to be aware of, and verify the lawfulness of, the processing.
And when I’m Prime Minister a UK GDPR (Recital 63 Correction) Amendment Bill is the first thing I will table.
The views in this post (and indeed most posts on blog) are my personal ones, and do not represent the views of any organisation I am involved with.
informationrightsandwrongs 
Hello Jon, I’ve noticed that infuriating comma too!
I always thought it should read: “… in order to be aware of the processing, and to verify the lawfulness of that processing.”
Kindest regards
[cid:c96ee420-c9ca-4938-9741-a8751b4be143] Mr R Mansfield ________________________________
Excellent stuff Jon.
>