⭐ Repository → 💼 SOC 2 → 💼 P5.0 Privacy Criteria Related to Access
💼 P5.1 The entity grants identified and authenticated data subjects the ability to access their stored personal information for review and, upon request, provides physical or electronic copies of that information to data subjects to meet the entity's objectives related to privacy.
- ID:
/frameworks/soc-2/p5/01
Description
If access is denied, data subjects are informed of the denial and reason for such denial, as required, to meet the entity's objectives related to privacy.
Similar
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 P5.1-1 Responds to Data Controller Requests | no data | ||||
| 💼 P5.1-2 Authenticates Data Subjects' Identity | no data | ||||
| 💼 P5.1-3 Permits Data Subjects Access to Their Personal Information | no data | ||||
| 💼 P5.1-4 Provides Understandable Personal Information Within Reasonable Time | no data | ||||
| 💼 P5.1-5 Informs Data Subjects If Access Is Denied | no data |