Chapter III of the GDPR provides for a set of rights that the data subjects can exercise to safeguard their personal data. Although each right has specific details and issues that could affect and be affected by ICT research and development (see the “Data protection and scientific research” subsection in the “Main Concepts” part of the General Part of these Guidelines) they all share some general features concerning their transparent information, communication and modalities of exercise (Article 12 GDPR). In this section, we analyze each specific right in the light of a processing that uses data gathered from social networks. However, since we have already analyzed the right to information (see the “Transparency” section of this part of the Guidelines), and the right not to be Subject to Automated Decision-Making has been extensively addressed in the “Human Agency” section of the Guidelines, we will focus now on the remaining rights.