You have seen so far how engineers, technical program managers, and other leaders in lean and fast-paced businesses can address privacy needs for their business and its customers. These strategies include using security tools to protect privacy, classifying and cataloging data, obfuscating it, and deleting it.
Besides protecting data, being transparent about how and why you collect data is becoming critical for privacy stakeholders and regulators. The former include customers, media, and activists, while the latter range from non-profits to governments. This sentiment led to the codification of Data Subject Access Requests (DSARs), which we examined in chapter 8. This chapter will dive deep into consent management, which is another privacy expectation that is becoming critical for any company that collects and handles customer data.