Data subject request-management made easy

Manage one or one million data subject access requests, no problem. Osano's platform makes it easy to verify a data subject's identity, assign inbound requests to the correct person and then deliver results to the data subject in the timeframe required by law. 

Learn About Subject Rights Management
Data Subject Access Request

Automate data subject rights requests

Laws like the EU's General Data Protection Regulation and California's consumer privacy law, the CCPA, assign "data subjects," the customers you collect and store data on, rights to their information. Without rules and order, responding to data subject access rights requests can be a nightmare for organizations to track and manage. Osano's software sets up a process for success. It'll allow your organization to: define data sources, assign roles and embed a data-subject request form on your site. In no time, you'll be compliant with global and local laws.

DSAR/SRR Workflow

Never Miss a Deadline

Forgot to pick up milk on the way home? That happens, but you'll never miss a deadline with the Osano DSAR portal.

Verify Identities

Instantly ensure that the requestor is the data subject or has the right to request the information. 

Go Paperless

Use Osano's GDPR representative and your paper mailed requests also magically appear in your portal.

Is full DSAR/SRR automation the right approach?

Get Compliant Now

Under both the GDPR and CCPA, as well as under numerous other data privacy laws, individuals have data rights. Individuals have the right to request that you delete their data, correct inaccurate data, do not sell their data, or provide a list of all data that you store about them.

In recent months, numerous groups have undertaken "DDOS Compliance Attacks" whereby they band together and submit thousands of fraudulent DSAR/SRRs in an attempt to harm businesses. Automating portions of your DSAR workflow can preserve valuable resources should your company fall victim to one of these DSAR DDOS attacks.

Although full automation or AI-powered DSAR workflows and data mapping may initially seem like a panacea, accuracy is paramount in responding to a subject rights request. If your automation is not 100% accurate, even if you answer a request in a timely fashion, you may still run afoul of the law.

Osano implements a hybrid approach, implementing technology where it is best, and requiring human intervention for critical details. By pairing the Osano GDPR Representative Service, PII Tracking API, and DSAR Workflows together, you will have a robust DSAR implementation that complies with the law and is always accurate.

What's New at Osano

Pentland release offers new features on consent management and data subject access requests

As we here at Osano continue to roll out features to help you do data privacy right, we have some exciting new features to announce with our Pentland release.

Our First Layer Category feature allows you to turn off the “cookie categories” function within your first-layer cookie banner. This impacts end users within the European Economic Area and the U.K. Importantly, you still have the option to maintain the cookie categories function for your customers if preferred, but now, an “on/off” toggle button allows you the choice. 

The change is based on Osano customers’ feedback and aims to present a cleaner user experience and may result in higher opt-in rates to cookies.

In addition, the Pentland release provides a new service to help you comply with California residents’ privacy rights under California’s Consumer Privacy Act. The law requires businesses with an offline component or indirect relationship to provide a toll-free phone number for data subject inquiries. Customers using Twilio as a phone host can now integrate Osano’s “DSAR phone line,” which transcribes the call and places it into your company’s data subject access request center. This eliminates the need for call agents to fulfill your data subject phone line obligation under the CCPA.

Learn more about Pentland features

Osano offers privacy consulting

By now, you know that companies that show their customers that they take privacy seriously will earn their trust and loyalty. And we know that compliance with data privacy laws, like the GDPR or the CCPA, can feel like a burden. But what if it were easy and could boost your bottom line? What if you could relax — maybe even sleep at night! —  because your regulatory commitments were being handled.

We're excited to tell you: We can help you feel that way. Osano is now offering privacy consulting in addition to our compliance software. Whether you need an interim privacy officer, a data protection officer or project-specific resources, our privacy consultants are ready to roll their sleeves up for you. 

You can get started today with a free 30-minute consultation by clicking here. 

Find out more

Sweeney release

We have just released a major new upgrade to our platform. This update features role-based access controls for your business. Admins will now be empowered to restrict a user's access and control to specific parts of Osano's platform.

Role-based access controls are only the most visible of numerous enhancements in this update that improve the performance, integrity and security of the Osano platform. The release notes detail the full list of enhancements and bug fixes.

The name of this release is a hat tip to Latanya Sweeney, a Harvard professor and privacy researcher who has done pioneering privacy research for the past two decades. Click to read more about her impressive work.

Read the Release Notes

Westin release

Announcing a shiny new update to Osano's platform! Updates include:

  • Consent Manager preview showing language translations and popup styling by location
  • Consent Manager versioning and rollback
  • iFrame blocking support
  • Consent Manager configuration duplication
  • Two dozen other features, enhancements, and bug fixes

This release is named in honor of Alan Westin, the father of modern data privacy law. We released an article on our blog about how his work has shaped privacy laws and perceptions today.

Read the Release Notes

White paper: The Osano Data Privacy and Data Breach Link

Announcing a groundbreaking report analyzing the relationship between a company’s privacy practices and their likelihood of experiencing a data breach. The Osano Data Privacy and Data Breach Link reveals a predictive relationship between responsible privacy practices and security outcomes.

Download the White Paper