Skip to main content

Provide processing confirmation

Summary

The system must provide confirmation to its users of whether or not it is storing and/or processing their personal data.

Description

Systems usually request information from their users, obtain it from third parties or collect it based on their interactions with the application. They should have a mechanism that allows users to request confirmation of whether or not the system is managing their personal information, even if it was not obtained from the users but from a third party.

Supported In

This requirement is verified in following services:

PlanSupported
Machine🔴
Squad🟢
One-Shot🟢

References

Vulnerabilities