Data Privacy Compliance

Poplar has built in features to make data privacy compliance easy for our clients. Poplar is set up to process both right to delete and right to access request types. This is separate from an opt out which is handled more as a default audience. 

1. Data Subject Request API
   1. We have 2 endpoints, an opt-out/do not mail endpoint that will add submissions directly to a global opt out list for your account as well as a data subject request (DSR) endpoint that can process the right to delete and right to access requests programmatically. View API Documentation
2. In Platform CSV Upload
   1. You can upload a CSV of deletion or access requests as well as review historical requests directly from the UI: https://app.heypoplar.com/account/data_subject_requests
   2. Formatting the CSV should be a single type of request per submission and use the standard audience fields. I.e. email, address_1, address_2, city, state, postal_code. 

Share Local Media & Poplar Joint Clients

If you work across SLM, Poplar opt outs will apply to all of your client data across our business lines. 

Additional Notes:

1. Data deletions submitted should generally occur within 24 hours. 
2. Please submit all types of PII that you have when submitting opt outs or running a data deletion we do not have any type of global user profiles so if you submit an email it will only run a deletion on any records containing that email (we don’t automatically associate an email with addresses on an order for example)

Data deletions and opt outs only apply to an individual client's data, if you found this article as a consumer wishing to opt out of mailings please contact the Brand directly via their website. To opt out of Share Local Media Shared Envelopes you can go to https://opt-out.sharelocalmedia.com/