Skip to main content

Supporting privacy rights


Overview of how Sitecore supports an individual's rights according to privacy legislation such as the EU General Data Protection Regulation (GDPR) and the California Consumer Protection Act (CCPA).


This Privacy Guide provides technical guidance on how your developers can choose to configure your Sitecore product implementation to support you with data privacy compliance. This guide does not provide exhaustive guidance, and should not be construed or used as legal advice about the content, interpretation, or application of any law or regulation. You, the customer, will always be in the best position to assess your own risks, and must seek your own legal counsel to understand the applicability of any law or regulation to your business, including how you process personal information. Your resulting implementation is based entirely on your own configuration choices.

Privacy legislation such as the EU General Data Protection Regulation (GDPR) and California Consumer Protection Act (CCPA) afford various rights to individuals including:

The following section describes each data right as it relates to the contact, user, and customer entities, and lists the features, APIs, and configuration options available to you: Entities that represent individuals in your Sitecore installation.

See also: