Template · DSR REPLY

DSR reply template · CCPA/CPRA consumer request

Template body

Subject: Re: California Privacy Rights Request — {{ticket_id}}

Dear {{requestor_name}},

Thank you for your request received on {{request_received_date}}. This is our response under the California Consumer Privacy Act (as amended by CPRA).

## Identity verification
We verified your identity using {{identity_method}}. We have a reasonable degree of certainty under §1798.140(j).

## Your request type: {{request_type}}
({{know|access|delete|correct|opt-out|limit-sensitive-pi}})

## What we hold (last 12 months)

### Categories collected
{{categories_list}}

### Sources
{{sources_list}}

### Business purposes
{{purposes_list}}

### Categories disclosed for business purpose
{{disclosure_business_purpose_list}}

### Categories sold or shared
{{sold_or_shared_list_or_none}}

### Sensitive personal information
{{sensitive_pi_list_or_none}}

## Action taken
{{action_taken_summary}}

## Your other rights
- **Know / Access** — request what categories we have, sources, purposes, and recipients
- **Delete** — request deletion subject to exceptions (§1798.105(d))
- **Correct** — request correction of inaccurate PI
- **Opt-out of sale/sharing** — your choice is recorded; GPC signal will continue to be honoured
- **Limit use of sensitive PI** — restrict use to disclosed business purposes
- **Non-discrimination** — we do not deny service or charge differently for exercising rights

## Authorized agents
If you used an authorized agent, we verified the power of attorney on {{poa_verified_date}}.

## Right to complain
You may file a complaint with the California Privacy Protection Agency (CPPA): https://cppa.ca.gov/.

If any of the above is unclear or you wish to follow up, please reply within 15 business days.

Best regards,
{{privacy_team_name}}
{{controller_name}}
{{privacy_email}}

---
Ticket {{ticket_id}} · Response sent {{response_date}} · {{days_taken}} of 45-day CCPA §1798.130(a)(2) window

Variables to fill in