Respond to complaints, concerns, or questions timely

Azure Policy definition

Respond to complaints, concerns, or questions timely

Control Domain

Control

Name

MetadataId

Category

Title

Owner

Requirements

Description

Info

Policy#

SOC_2

P8.1

SOC_2_P8.1

SOC 2 Type 2 P8.1

Additional Criteria For Privacy

Privacy complaint management and compliance management

Shared

The customer is responsible for implementing this recommendation.

• Communicates to Data Subjects — Data subjects are informed about how to contact the entity with inquiries, complaints, and disputes. • Addresses Inquiries, Complaints, and Disputes — A process is in place to address inquiries, complaints, and disputes. • Documents and Communicates Dispute Resolution and Recourse — Each complaint is addressed and the resolution is documented and communicated to the individual. • Documents and Reports Compliance Review Results — Compliance with objectives related to privacy are reviewed and documented and the results of such reviews are reported to management. If problems are identified, remediation plans are developed and implemented. • Documents and Reports Instances of Noncompliance — Instances of noncompliance with objectives related to privacy are documented and reported and, if needed, corrective and disciplinary measures are taken on a timely basis. • Performs Ongoing Monitoring — Ongoing procedures are performed for monitoring the effectiveness of controls over personal information and for taking timely corrective actions when necessary.

Initiative DisplayName

Initiative Id

Initiative Category

State

Type

SOC 2 Type 2

4054785f-702b-4a98-9215-009cbd58b141

Regulatory Compliance

BuiltIn

AzPolicyAdvertizer

Azure Policy definition

Respond to complaints, concerns, or questions timely

JSON Left

JSON Right