This document provides the full list of systems that will be in scope of OneTrust’s Privacy Rights Automation module, for which there will be an automation of the process of data deletion and data access upon request by a guest through our mobile app/ website.
The list is subject to be updated over time, if other systems are added to the Privacy Rights scope.
Systems in scope:
AWS (RBI guest database)
Snowflake (RBI reporting)
mParticle (customer data platform)
Braze (customer engagement platform)
Amplitude - if this system is contracted by the Franchisee
Branch (deep links) - if this system is contracted by the Franchisee
Backups
Note: Forter is out of scope for Privacy Rights because it would interfere with this system’s ability to detect fraud. They have a GDPR exemption.