SOC 2_P5.2

SOC 2

Privacy Additional Criteria for Privacy

P5.2

The entity corrects amends or appends personal information based on information provided by data subjects and communicates such information to third parties as committed or required to meet the entity?s objectives related to privacy. If a request for correction is denied data subjects are informed of the denial and reason for such denial to meet the entity?s objectives related to privacy.

Communicates Denial of Access Requests—Data subjects are informed in writing of the reason a request for access to their personal information was denied the source of the entity’s legal right to deny such access if applicable and the individual’s right if any to challenge such denial as specifically permitted or required by law or regulation. Permits Data Subjects to Update or Correct Personal Information—Data subjects are able to update or correct personal information held by the entity. The entity provides such updated or corrected information to third parties that were previously provided with the data subject’s personal information consistent with the entity’s objective related to privacy.Communicates Denial of Correction Requests—Data subjects are informed in writing about the reason a request for correction of personal information was denied and how they may appeal.

 

Click here to Start your FREE trial today!

Explainer video

 

What is a Cybersecurity Compliance Framework?

You don’t need to clutter your security and privacy programs with an ever-increasing number of tools as they become more sophisticated. The Lionfish platform offers a one-stop solution to track progress and monitor any framework, from custom-built ones to highly-specialized and in-demand top security and privacy frameworks and certifications.

With the Lionfish platform, every framework is supported with guided scoping, policies, controls, automated evidence collection, and continuous monitoring, ensuring efficient preparation for audits or attestation in minimal time.

The Lionfish platform is compatible with a wide range of security and privacy frameworks, including:

Click here to Start your FREE trial today!

Explainer video