Data subject access requests have continued to be a compliance challenge for organizations subject to the EU General Data Protection Regulation, and those covered by the California Consumer Privacy Act should expect to face similar tests. The subject will be covered in the â€œDemystifying the DSR Process: Handling Difficult Data Subject Rights Requestsâ€� and â€œHandling Data Rights Requests in the Workplaceâ€� breakout sessions at the Privacy. Risk. Security. conference. DSARs have been the topic of a past IAPP conference session,Â and plenty of tools have been created to help organizations process the inquires, from a startup that sought to place all of the requests under one roof to an open-source tool to help companies answer DSARs for GDPR compliance.