Privacy page for Hitrust Mycsf | Learn how Hitrust Mycsf handles privacy

Contact information

The legal entity behind HITRUST MyCSF

Privacy policy

The privacy policy by is a legal document or statement that discloses how HITRUST MyCSF gathers, uses, discloses, and manges their customers' data.

View privacy policy for HITRUST MyCSF

Privacy contact information

Get the contact information for HITRUST MyCSF privacy team or DPO.

Privacy contact information for HITRUST MyCSF

Data transfers

The basis for HITRUST sharing, adding, uploading, hosting, accessing or sending personal data out of Europe. Vendors can also add a description of their own impact assessment for data transfers.

View HITRUST MyCSF's data transfers information

Security information & certifications

Documentation of the security measures and practices HITRUST has in place when handling personal data.

View HITRUST MyCSF's security information

Personal data

A description of the personal data that HITRUST is handling.

Sensitive and ordinary information being collected by HITRUST MyCSF's

Data processing agreements

A DPA is a contract that defines clear roles and obligations for the sharing of personal data.

Get HITRUST MyCSF's data processing agreement(s)

Data retention & deletion

Information about how long the data is kept for and when it's deleted.

Get HITRUST MyCSF's data retention information

Subprocessors

Subprocessors are companies that provide a service for HITRUST and who has or potentially will get access to personal data of their customers.

Get HITRUST MyCSF's list of subprocessors

Processing locations

Where personal data is processed by HITRUST

Get HITRUST MyCSF's full list of data processing locations

Processing locations of HITRUST's subprocessors

Where personal data is processed by the subprocessors of HITRUST

Get full list of data processing locations of HITRUST MyCSF's subprocessors