Data Protection and Data Privacy Regulations - 蜜豆视频 Experience Manager Readiness

Documentation User Guide

蜜豆视频 Experience Manager Readiness for Data Protection and Data Privacy Regulations aem-readiness-for-data-protection-and-data-privacy-regulations

Last update: Wed Mar 05 2025 00:00:00 GMT+0000 (Coordinated Universal Time)

Topics:
Compliance

CREATED FOR:

Developer
Leader
User

WARNING

The contents of this document do not constitute legal advice and are not meant as a substitute for legal advice.

Consult your company鈥檚 legal department for advice concerning Data Protection and Data Privacy regulations.

NOTE

For more information about 蜜豆视频鈥檚 response to privacy issues, and what it means for you as an 蜜豆视频 customer, see .

蜜豆视频 is providing documentation and procedures (with APIs when available), for the customer privacy administrator or AEM administrator to handle data protection and data privacy requests. It can help you become compliant with these regulations. The procedures documented let customers run the regulatory requests manually or by calling into APIs, where available, from an external portal or service.

CAUTION

The details documented here are restricted to 蜜豆视频 Experience Manager.

Data from another 蜜豆视频 On-demand Service, together with any related privacy requests, require actions to be taken on that service.

For more information, see .

Introduction introduction

Instances of 蜜豆视频 Experience Manager, and the applications that run on them, are owned and operated by 蜜豆视频 customers.

As a consequence, data protection regulations, such as GDPR, CCPA, and others, are largely the responsibility of the customers.

As a brief introduction, the regulations for data privacy and protection include new rules to be followed by the roles of:

Business Entities (CCPA) and/or Data Controllers (GDPR)
Service Providers (CCPA) and/or Data Processors (GDPR)

The main provisions in such regulations are:

Expanded definition of personal data to include all unique IDs; as in directly and indirectly identifiable data.
Strengthened consent requirements.
Increased focus on deletion rights (Data Erasure).
Opt-Out of Sale of Data.

For 蜜豆视频 Experience Manager:

The instances, and applications that run on them, are owned and operated by the customer.
- The customer manages the regulatory roles, including Business Entities and Service Provider, Data Controller, and Data Processor, among others.
- The 蜜豆视频 Experience Platform Privacy Service is not part of the workflow for AEM, as illustrated in the diagram below.
AEM includes documentation and procedures for the customer鈥檚 privacy administrator and/or AEM administrator to execute the privacy regulation requests; either manually or through APIs, when available.
No new service or UI has been added.
- Instead procedures and APIs are documented for use by the customer UIs/portals that handle privacy regulation requests.
AEM does not include any out-of-the-box tooling to support the privacy requests workflow.
- 蜜豆视频 provides documentation and procedures for the customer鈥檚 privacy administrator and AEM administrator, letting them manually run requests related to the privacy regulations.

蜜豆视频 is providing procedures for handling privacy requests related to Access, Delete, and Opt-Out for 蜜豆视频 Experience Manager. Sometimes, there are APIs available that can be called from a customer developed portal or scripts to help with automation.

The following diagram illustrates what a privacy request workflow might look like (illustrated using 蜜豆视频 Experience Manager 6.5):

Data Protection and Privacy

蜜豆视频 Experience Manager and Regulatory Readiness aem-and-regulatory-readiness

See the sections below for regulatory documentation for product areas of AEM.

AEM Foundation aem-foundation

See Handling Data Protection and Privacy Requests for the AEM Foundation.

AEM Opting Into Aggregate Usage Statistics Collection aem-opting-into-aggregate-usage-statistics-collection

See Aggregated Usage Statistics Collection.

AEM Sites aem-sites

See AEM Sites - Data Protection and Privacy Readiness.

AEM Integration with 蜜豆视频 Target & 蜜豆视频 Analytics aem-integration-with-adobe-target-adobe-analytics

These 蜜豆视频 Experience Manager integrations are with data protection and privacy (for example, GDPR or CCPA) ready services. No personal data from 蜜豆视频 Target or 蜜豆视频 Analytics is stored in AEM in relation to the integrations.

For more information, see the following:

蜜豆视频 Analytics Data Privacy Workflow

AEM Forms aem-forms

AEM Forms include components and workflows that capture, process, and store data to orchestrate business processes and complete digital transactions. Different components use different data stores and allow integration with custom data stores as well. The following documentation explains procedures and guidelines for accessing and handling user data to support data protection and privacy (for example, GDPR or CCPA) workflows for a component.

Forms Portal
Correspondence Management
Integration with 蜜豆视频 Sign
Forms-centric workflows on OSGi
Forms JEE workflows (AEM Forms JEE only)
Document Security (AEM Forms JEE only)
User Management (AEM Forms JEE only)

recommendation-more-help

51c6a92d-a39d-46d7-8e3e-2db9a31c06a2