New: Privacy Request Management

Every privacy request.
Handled and proven.

Shield turns data subject requests (access, deletion, correction, opt-out) from an inbox scramble into a tracked workflow with automatic legal deadlines and an audit trail regulators can read.

14-day free trial. No credit card required.

A privacy request is a legal clock.

The moment someone asks for their data, a response deadline starts: 30 days under GDPR, 45 under CCPA. Most teams track these requests in a shared inbox and hope nothing slips.

Requests get lost

DSARs arrive by email, contact form, or word of mouth. Without a single intake point, requests sit unread while the deadline runs.

Deadlines vary by law

GDPR, PIPEDA, and Quebec Law 25 give you 30 days. CCPA, VCDPA, CPA, and CTDPA give you 45. Tracking which clock applies to which request is manual work that invites mistakes.

No proof of handling

When a regulator asks how a request was handled, an email thread is not evidence. You need a timestamped record of every action, by whom, and when.

From intake to evidence in four steps

1

Publish a branded intake form

Build a form with your logo, colors, and custom fields, then publish it to a global CDN. It loads instantly, needs no login to submit, and stays up independently of anything else. Drop the link in your privacy policy or Do Not Sell page.

2

Requests become tracked cases

Every valid submission automatically becomes a tracked request. No manual triage. Shield detects the requester's jurisdiction from their country and state, sets the legal response deadline, emails the requester an acknowledgment with a reference number, and alerts your team.

3

Work the request

Move each case through a clear workflow: New, Acknowledged, In Progress, Complete or Rejected. Review uploaded identity documents and mark them verified. Add internal notes. Shield warns you at 7 and 3 days before the deadline, and flags anything overdue.

4

Prove it happened

Every action writes to an immutable audit trail: status changes, notes, emails, identity checks, document accesses. Export it as a CSV evidence packet whenever a regulator, auditor, or lawyer asks. Closed requests auto-purge after your retention window.

Everything a defensible DSAR process needs

Hosted intake forms

CDN-hosted public forms with your branding, custom fields (text, dropdowns, checkboxes, file uploads), and built-in bot protection. Run multiple forms for different brands, jurisdictions, or employee vs consumer requests.

Automatic legal deadlines

Shield detects the applicable law from the requester's location: 30 days for GDPR, PIPEDA, and Quebec Law 25; 45 days for CCPA, VCDPA, CPA, and CTDPA. Unknown jurisdictions fall back to a default you set.

Identity verification

Requesters can upload a JPEG, PNG, or PDF ID (up to 10 MB). Files live in private storage, viewable only through 5-minute expiring links. An admin reviews and attests, and every verification or revocation is logged.

Email automation

Acknowledgment on submission, completion notice on close, and rejection notices that carry your written reason. Your team gets new-request alerts, deadline warnings at 7 and 3 days, and an overdue flag.

Exportable audit trail

Every action is recorded with actor and precise timestamp: submissions, status changes, notes, identity checks, document accesses, emails. One click exports a standards-compliant CSV, and even exports themselves are logged.

Data minimization built in

Closed requests are automatically purged after a retention window you control (90 days by default), including any identity documents. You keep proof of process without hoarding personal data.

Requester status page

Requesters check their own progress with a reference number and email address. No login, no support tickets, and the lookup is designed so outsiders cannot fish for other people's requests.

Rejections with reasons

Shield will not let a request be rejected without a written reason. The reason is saved, audited, and sent to the requester verbatim, so every decision is defensible.

Simple Pricing

All plans billed annually. Monthly billing available at a higher rate. One-time setup fee applies.

Essentials

$149/mo
Start Free Trial
Most Popular

Professional

$349/mo
Start Free Trial

Enterprise

$749/mo
Start Free Trial

14-day free trial on every plan. No credit card required. Questions about tier limits or bundles? .

Frequently Asked Questions

Ready before the next request arrives.

Publish your intake form today and never chase a DSAR through your inbox again.