Configuring org-wide privacy preferences

TerraTrue lets you set granular rules around your privacy program so that privacy and product counseling can happen at scale. Only users with the Privacy Manager permission can set and modify these privacy preferences, so you don’t have to worry about other users causing mischief.


You can document how your org’s privacy policy lets you collect and use data in Settings > Privacy > Permissions. The selections you make in this setting will build a model of your privacy policy within TerraTrue that will help us recommend when you should update your policy. Just click the data types and data uses covered by your privacy policy and hit the Save button.

When setting up your privacy permissions, don’t be afraid to go into detail

Most privacy policies (if done well!) are pretty high-level to ensure users can understand them. But TerraTrue provides better recommendations when it has granular information. So, while your privacy policy might say you collect “unique IDs,” you can use this setting to let TerraTrue know you actually collect cookie IDs, IP addresses, and IDFAs.


The Profile setting lets you set org-wide preferences that will auto-populate answers in the Privacy Worksheet and change the recommendations you receive as you use TerraTrue. In each section, just choose the best options for your org and hit the Apply button.

Children’s Data

This setting lets you record whether your org collects data from children. By default, this setting is set to “Unknown” and you’ll receive privacy recommendations for all age groups. You can change this preference to let us know whether the following age groups are your primary audience, secondary audience, or not permitted:

  • Under 13
  • Under 16
  • Under 18
  • 18+

Individual Rights

This setting lets you record whether you can delete, correct, export, or provide individuals with access to specific types of data. We use this information to pre-populate questions in the Privacy Worksheet and let you know when you may need to develop tools to address these rights.

Of course, it doesn't make sense to talk about your ability to delete or correct data that your privacy policy doesn't let you collect to begin with. So be sure to first define what your privacy policy allows through the Privacy Policy Permissions settings. Until you do that, this section will be empty.


This setting lets you record privacy and security safeguards that are common across your org. We’ll use these to automatically populate answers in the Privacy Worksheet and your processing records.

Contact Info

This setting lets you identify a privacy and general contact for your org. Simply select a contact type (phone number, email address, address, or URL) and enter the contact information. We’ll use this information to help you update your privacy notices.


The Modules setting is where you can enable or disable TerraTrue privacy modules, which will change the questions you see in the Privacy Worksheet and the privacy recommendations you receive throughout TerraTrue. Today, TerraTrue supports modules for the CCPA/CPRA, GDPR, CPA, VCDPA, and CTDPA. If one of these laws doesn’t apply to your org, you can disable the module and get a more streamlined privacy review experience. You can always change which modules apply to a specific launch in the Privacy Worksheet.

When deciding which modules to enable, consider your org’s long and short-term needs

For example, your org may not be affected by the GDPR today, but maybe you plan to open an EU office in the next 12 months. Disabling the GDPR module will make Privacy Worksheets much shorter and reduce the number of recommendations you’ll need to consider today, but you’ll need to address all of the GDPR-related privacy issues you skipped when you eventually move into the EU.


The History setting makes it easy to audit who made changes to TerraTrue’s privacy settings.

Was this article helpful?
0 out of 0 found this helpful