The Essential Security Questions
Privacy
Data privacy practices, personal information handling, and privacy compliance.
Questions in this Category
Is your Privacy Policy publicly available? Please provide the URL.
Explanation of the Question: This question is asking whether your organization has a Privacy Policy that is accessible to the public.
Do you have a mechanism to respond to data subject access requests (DSARs) within required timeframes?
Explanation of the Question This question is asking whether your organization has a structured process in place to handle data subject access requests (DSARs).
Do you have a mechanism to delete customer personal data upon verified request?
Explanation of the Question: This question is asking whether your organization has a process in place to remove personal data of customers when they formally request it.
If operating outside the EU, have you appointed an Article 27 EU Representative?
Explanation of the Question: This question is asking whether your organization, if it operates outside the European Union (EU), has designated a specific representative within the EU.
Are personnel who handle personal data trained on their privacy obligations at least annually?
Explanation of the Question: This question is asking whether the individuals within your organization who manage or process personal data receive regular training on their responsibilities to prot...
ResponseHub is the product I wish I had when I was a CTO
Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.
As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!
I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.
