The controller should use all reasonable measures to verify the identity of a data subject
Huge emphasis on reasonable. If by asking me to log in for the sake of verification results in me not being able to delete my data as I’ve demonstrated above, then this is 100% NOT REASONABLE.
They are actively hindering the process that GDPR requires me to take.
I don’t care about the small letters, this is a GDPR violation. I should have an easy way to delete my data and this ain’t it.
Huge emphasis on reasonable. If by asking me to log in for the sake of verification results in me not being able to delete my data as I’ve demonstrated above, then this is 100% NOT REASONABLE.
They are actively hindering the process that GDPR requires me to take.
I don’t care about the small letters, this is a GDPR violation. I should have an easy way to delete my data and this ain’t it.