HITRUST MyCSF

The privacy policy by is a legal document or statement that discloses how HITRUST MyCSF gathers, uses, discloses, and manges their customers' data.

Get the contact information for HITRUST MyCSF privacy team or DPO.

The DPA is a contract between you and HITRUST MyCSF that has to be in place when processing personal data and transferring it to HITRUST MyCSF.

A description of the different categories of personal data and data subjects that HITRUST MyCSF is handling with the location of HITRUST MyCSF.

Subprocessors are companies that provide a service for HITRUST MyCSF and who have or potentially will get access to personal data of HITRUST MyCSF customers.

The location of the subprocessors that are processing data on behalf of HITRUST MyCSF. If data is sent outside the EEA there must be a legal basis for these transfers.

The basis for HITRUST MyCSF transfers of personal data outside EEA. Vendors can also add a description of their own impact assessment for data transfers.

Statement or documentation of the security measures and practises HITRUST MyCSF have in place when handling personal data.