Bluecore is a first-party data processor that collects personal and general data on customers who interact with our customer’s products and services. Bluecore is committed to maintaining compliance with applicable data privacy regulations including, but not limited to, the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) for both itself and its customers.
When Bluecore receives a Right to be Forgotten requests, the personal data is obfuscated within the system.
There are two ways to process a Right to be Forgotten request: manually submitting a request in the Bluecore platform, or through managed feed via SFTP in Files.com.
While Bluecore supports both options for Right to be Forgotten requests, we recommend a managed feed for ease of use and more automated options.
Managed Feed
Right to be Forgotten requests submitted via managed feed must be separated by data type (email or phone number) and request type (GDPR or CCPA).
Folder location
Use SFTP to transfer GDPR requests to the <bluecore_namespace>/privacy/gdpr directory and CCPA requests to the <bluecore_namespace>/privacy/ccpa
directory.
File name
Use the following naming convention: <requestType>_<dataType>_YYYYMMDDHH.csv.
Valid Request Types:
- GDPR
- CCPA
Valid Data Types:
- SMS
YYYYMMDDHH represents a date and time in the following format: year (YYYY), month (MM), day (DD), and hour (HH).
File name examples:
- CCPA_email_2024010113.csv
- GDPR_SMS_2024013101.csv
File contents
Each value in the CSV must correspond to either an email address or phone number in your Customer Site’s Customer Data records.
Email files must have email addresses in a valid email format, for example username@domain.
SMS files must contain phone numbers in the E.164 format.
There is a limit of 5,000 email addresses or phone numbers that can be processed in a single file. For submissions of over 5,000 IDs, split them up into separate files.
If the file upload fails, the system will not retry. Contact that team via email at support@bluecore.com with any questions and help on getting your request successfully submitted.
Submit a privacy request in Bluecore
Submissions of less than 100 IDs or special one-off Right to be Forgotten requests can be submitted by Client Admins within Bluecore.
To submit a privacy request, complete the following:
- Navigate to
Data, then Privacy Requests. The Privacy Compliance page opens.
- Click Privacy Request and click Right to be Forgotten request. The New Privacy Request page opens.
- In the Request Settings, select either email address or phone number, depending on which IDs you have.
- Enter the IDs into the box, making sure they are separated by a comma or new line.
- As you enter in the IDs, the page automatically checks that they are in a valid format. Any invalid IDs will display in the IDs with Invalid Format section.
- When you’re finished, click Submit Privacy Requests. The request is submitted.
Managing failed privacy requests submitted through Bluecore
Privacy requests with a Failed status were not successful.
Bluecore does not automatically retry any failed requests.
If you need more information on how to fix a failed request, email the Customer Support team at support@bluecore.com.
View a privacy request in Bluecore
On the Privacy Compliance page, Client Admin and Data Managers can view an audit trail of all requests from the past two years, both submitted within Bluecore or submitted via SFTP or managed feed.
You can filter the requests by the following:
- Date of the request
- The date the request was submitted
- Status
- The request’s status
- ID type
- The request type, either Email or Phone number
- Search identifier
- A free text field where you can search for an email address or phone number.