| ๐ผ P5.1 The entity grants identified and authenticated data subjects the ability to access their stored personal information for review and, upon request, provides physical or electronic copies of that information to data subjects to meet the entity's objectives related to privacy. | 5 | | | |
| ย ย ย ย ๐ผ P5.1-1 Responds to Data Controller Requests | | | | |
| ย ย ย ย ๐ผ P5.1-2 Authenticates Data Subjects' Identity | | | | |
| ย ย ย ย ๐ผ P5.1-3 Permits Data Subjects Access to Their Personal Information | | | | |
| ย ย ย ย ๐ผ P5.1-4 Provides Understandable Personal Information Within Reasonable Time | | | | |
| ย ย ย ย ๐ผ P5.1-5 Informs Data Subjects If Access Is Denied | | | | |
| ๐ผ P5.2 The entity corrects, amends, or appends personal information based on information provided by data subjects and communicates such information to third parties, as committed or required, to meet the entity's objectives related to privacy. | 4 | | | |
| ย ย ย ย ๐ผ P5.2-1 Responds to Data Controller Requests | | | | |
| ย ย ย ย ๐ผ P5.2-2 Communicates Denial of Access Requests | | | | |
| ย ย ย ย ๐ผ P5.2-3 Permits Data Subjects to Update or Correct Personal Information | | | | |
| ย ย ย ย ๐ผ P5.2-4 Communicates Denial of Correction Requests | | | | |