User Rights Section
Document the privacy rights available to your users.
Standard Rights to Include
Your privacy policy should explain these rights clearly:
Right to Access
Users can request a copy of their personal data and information about how it's being processed.
Right to Rectification
Users can request correction of inaccurate or incomplete personal data.
Right to Erasure
Users can request deletion of their personal data in certain circumstances (also known as "right to be forgotten").
Right to Data Portability
Users can receive their data in a structured, machine-readable format and transfer it to another service.
Right to Object
Users can object to processing based on legitimate interests or for direct marketing purposes.
Right to Withdraw Consent
Where processing is based on consent, users can withdraw that consent at any time.
How to Exercise Rights
Your policy should explain how users can exercise their rights:
Template Text Example
"You have the right to access, correct, or delete your personal data. You may also have the right to restrict or object to certain processing activities and to receive your data in a portable format. To exercise any of these rights, please contact us at privacy@yourcompany.com or submit a request through our online form at [link]. We will respond to your request within 30 days."
Integration with DSAR Module
💡 Connect Your Tools
If you're using our DSAR module, include a direct link to your request form in the privacy policy. This makes it easy for users to exercise their rights and streamlines your intake process.