You are here:
Privacy Center Definitions
Keep these terms in mind when working with Privacy Center.
Required Editions
| Available in: all editions |
Privacy Regulation Laws
- California Consumer Privacy Act (CCPA)
- Privacy law that regulates how businesses collect and process the personal information of Californians
- California Online Privacy Protection Act (CalOPPA)
- California privacy law that requires all commercial websites and online services that collect personally identifiable information from California consumers to conspicuously display a privacy policy that outlines how they collect, use, and share personal information
- Children’s Online Privacy Protection Act (COPPA)
- US privacy law that regulates commercial websites or online services that are directed at children under 13 or that knowingly collect children’s personal information and requires that operations of websites and online services obtain verifiable parental consent before collecting a child’s personal information
- Federal Trade Commission
- Government agency that serves as the primary authority regarding privacy issues in the USA and serves to prevent unfair or deceptive acts or practices in or affecting commerce
- General Data Protection Regulation (GDPR)
- Privacy law that regulates how businesses collect, store, and use personal information about European residents
- Gramm-Leach-Bliley Act (GLBA)
- US privacy law that regulates US companies and their affiliates engaged in providing financial products or services to consumers
- Health Insurance Portability and Accountability Act (HIPAA)
- US privacy law that limits the collection, use, disclosure, and protection of protected health information
- Privacy Act
- US privacy law that governs federal governmental agencies’ collection, maintenance, use, and disclosure of personally identifiable information stored in their records
- Shine the Light Act
- California privacy law that requires for-profit companies to disclose any personal information that they share with third parties and who those third parties are
Data Subject Rights
- Data Subject Rights
- The broad range of rights provided to data subjects (“customers”) regarding their personal data
Under the General Data Protection Regulation (GDPR)
- Anonymous data
- Data that can’t ever be connected to an identified or identifiable person
- Data Access
- The right to confirm with a data controller whether the organization is processing their personal data and, if so, to be informed about how that information is processed, why it’s being processed, and what other parties the information has been shared with
- Data Portability
- The right to ask a controller to provide one’s own personal data in a structured, commonly used, and machine-readable format (for example, a .CSV file) so that the information can be transmitted to another company
- Data Rectification
- The right to request that a controller correct or complete personal data if the data is inaccurate or incomplete
- Privacy by Default
- The idea that organizations must always use the most “privacy friendly” default settings when collecting, processing, or storing data
- Pseudonymous data
- Personal data that can’t be tied to a specific data subject without additional information that is stored separately, with technological measures to ensure the data is not combined with that additional information
- Restriction of Processing
- The right to request that a controller stop access to and the modification of one’s personal data
- Right to Erasure (or “Right to Be Forgotten”)
- The right to request that a data controller delete or remove their personal data in situations when the data is no longer needed for the original purpose, when the data subject withdraws consent, or when the data subject objects to the processing and the controller has no overriding legitimate interest in the processing
- Right to Object
- The right to object at any time to the processing of one’s own personal data, in particular if the processing is for direct marketing purposes
Under the California Consumer Privacy Act (CCPA)
- Right to Access
- The right to request that a business disclose any or all of this information:
- Categories of personal information collected about them
- Categories of sources that personal information is collected from
- Purpose that personal information is collected for
- Third parties that the business shares personal information with
- Specific personal information that the business holds about a consumer
- Right to Equal Services and Pricing
- The right of consumers to exercise their rights under the CCPA without a business reducing the quality of services or charging a higher price to that consumer
- Right to Know (or “Right to Notice”)
- The right of consumers to receive clear and transparent information about the categories and types of personal information businesses are collecting about them, as well as the purpose for the data collection and the identity of the third parties that their personal information is being shared with
- Right to Opt Out
- The right at any time to tell businesses to stop selling a customer’s personal information
- Right to Request Deletion
- The right to request that businesses delete their personal information when such information was collected from the consumer
Privacy Center
- Permission set
- A convenient way to assign users specific settings and permission to use various tools and functions
- Permission set license
- A license that incrementally entitles users to access features that aren’t included in their user licenses; users can be assigned any number of permission set licenses
- Personal data
- Any data that relates to an identified or identifiable individual that’s generally used in and covered by EU privacy laws
- Personally Identifiable Information (PII)
- Information that can be used to identify a specific individual or that is particularly sensitive and that generally is used in and covered by US privacy laws
- Salesforce Connect
- A technology for exposing external data inside Salesforce as though it’s inside Salesforce (or, virtualized data)
Heroku
- Dyno
- An isolated, virtualized, and dynamic Linux container designed to execute code based on a user-specified command
- Heroku
- A managed cloud platform that’s also known as a Platform as a Service (PaaS)
- Heroku Connect
- A means of communicating customer information between Salesforce and Heroku that provides bi-directional synchronization between Salesforce and Heroku Postgres to unify data in your Postgres database with the Contacts, Account, and other customer objects in the Salesforce database
- Heroku Private Space
- A dedicated environment with its own isolated network, routing layer, and control plan that isn’t shared with any other apps outside the space; used for running dynos and Heroku add-ons
- Postgres Private 6
- A secure, scalable, and fully managed open-source database provided by Heroku
- Redis Private 7
- A key-value data store provided by Heroku
Did this article solve your issue?
Let us know so we can improve!
