Frequently Asked Questions

PrivacyCare.io is an easy-to-use service to help you manage and track consumer privacy data requests required by California, Utah, Virginia, Connecticut, and Colorado. PrivacyCare will track and manage consumer data requests with businesses through a business portal. Once a validated request has been made, Consumer will be able to request action, track progress based on their right to opt-out, change, delete their data from your business through their consumer facing portal.

PrivacyCare.io is a simple solution to help businesses manage consumer data requests, so you can focus on building your business, brand and consumer loyalty. The platform will manage and track all your consumer privacy requests, so you can direct your attention to growth and expansion. Businesses of all sizes like the solutions for its basic compliance, without unnecessary complexity.

You can make changes to your plan at any time by changing your plan type and adding/removing users (note that post the refund period, we offer no refunds for downgrades). To change your plan, simply go into the admin section, and click on the billing option. From there, click on "change plan," pick your desired plan.

PrivacyCare.io allows you to seamlessly integrate all of your favorite tools. Some notable integrations include Webflow, Squarespace, Wordpress, Wix, HubSpot, Microsoft Office 365, Google Suite, Mailchimp, Salesforce, Microsoft Teams, Excel and many more.

Yes, PrivacyCare complies with the Consumer data privacy laws from those states. Read more about consumer privacy laws by state here.

PrivacyCare trial is for a period of 45 days. Once your trial expires, you may purchase a PrivacyCare.io subscription. View all the different plans here.

Dashboards are available for business users and their customers to facilitate workflows, and make sure you stay up to date on what's happening in multiple boards. Create summaries, reports, and get a high-level view of everything that is important to you! Centralize your consumer data privacy requests in one workspace and have the tools and information you need in one view.

Yes, Privacycare does support multi factor authentication through email and text.

Each organization is unique and requires specific features to support its workflows and projects. For this reason, we offer a 45-day free pro trial. Here, you can check out different features, and make an informed decision (with no credit card required!) If you need more assistance in choosing the right plan for you, please reach out to our support team - support@privacycare.com.

We work with law firms, and have a relationship with iapp, a professional privacy research group that tracks the privacy laws globally. In addition, our team does in-house research, attends industry events, and consults with privacy consultants.

Data Privacy or Information privacy is a part of the data protection area that deals with the proper handling of data focusing on compliance with data protection regulations. Data Privacy is centered around how data should be collected, stored, managed, and shared with any third parties, as well as compliance with the applicable privacy laws (such as California Consumer Privacy Act CCPA or General Data Protection Regulation GDPR)

Data governance signifies how businesses intend to use data. According to the Data Governance Institute, which provides vendor-neutral best practices and guidance, adopting a governance framework incorporating best practices will help stakeholders across any organization identify, meet, and enforce their information needs.

Data compliance refers to the specific policies and procedures an organization adopts to comply with applicable data privacy laws, regulations, industry standards, and internal policies. Compliance measures include categorizing the types of data that need protection and specifying what steps to take concerning each data type under the applicable rule. 

Consent is an individual’s permission to process that person’s information in a specific way. What constitutes consent depends upon the applicable rule; in some cases, consent must be explicit or even in writing. In other cases, consent can be assumed or inferred based on a person’s action or even based on a person’s inaction (for example, in the case of “opt-out consent”).

Opt in versus opt out is a common dichotomy for understanding different types of consent.  If explicit consent is required before a business is permitted to process a person’s information, that is referred to as “opt-in” consent (i.e., you can’t use the person’s information until they opt in). For instance, you opt into data processing when you sign up for an online service and agree to have your data collected and processed in specific ways. By contrast, some rules require only “opt-out” consent. That means anyone is permitted to use your information until you tell them not to. In the opt-out context, a business may collect information about people, but is required to delete the information regarding any person who contacts the business to opt out. 

PI, PII, and personal data are three phrases that all mean the same thing, although the specific meaning depends upon the specific law, rule, or regulation you are talking about. For example, the General Data Protection Regulation (GDPR) has a specific definition of “personal data” that is different from the California Consumer Privacy Act’s (CCPA) definition. As a broad concept, each of these terms refers to information specifically about an individual but each law, rule, or regulation addressing personal information will have its own definition with specific exclusions and exceptions that must be carefully considered. 

In short, a Consent Management Platform (CMP) acts as a mediator between a website visitor and the services on the website that might collect their personal data via cookies for various reasons such as marketing, social sharing and statistics.

Personal data revealing racial or ethnic origin. Political opinions. Religious or philosophical beliefs. Trade union membership. Genetic data and biometric data processed for the purpose of uniquely identifying a natural person. Data concerning health.

When data that should be kept private gets in the wrong hands, bad things can happen. A data breach at a government agency can, for example, put top secret information in the hands of an enemy state. A breach at a corporation can put proprietary data in the hands of a competitor.

Data Subject Access Requests (DSARs) give individuals (also known as data subjects) the right to discover what data an organization is holding about them, why they are holding that data and who else their data and other personal information is disclosed to.

Publicly available information generally means information that can be found in public sources and is therefore presumed not to be private for purposes of privacy laws. What this means in a particular case depends on the law, rule, or regulation at issue. Some privacy laws exclude publicly available information from their scope, but others do not. Different laws may include varying definitions. 

Some privacy laws, rules, and regulations define a subset of personal information as “sensitive” personal information and subject this typeof information to more stringent obligations. For example, personal information may be defined to include all information about a person, but information about the person’s health history is deemed sensitive personal information. Sensitive personal information can include information about a person’s race, ethnic origin, religious beliefs, marital status, age, citizenship, immigration status, mental or physical health condition or diagnosis, sexual orientation, political opinions, criminal history, account numbers, Social Security number, genetic information, or biometric information. Some privacy rules may permit the processing of personal information generally with only opt-out consent, whereas the processing of sensitive personal information may require opt-in consent.