Domains / Security and Compliance/ Software Subsystem

Privacy Rights API

REST API for submitting and tracking GDPR data subject requests (access, erasure, portability) and managing consent records.

Software Subsystem Application active

Privacy Rights API accepts data subject requests from customer-facing portals and B2B tenant admin interfaces. Requests are validated, assigned SLA deadlines, and dispatched as workflow tasks to downstream services. Status tracking and notifications are built into the workflow orchestration layer.

Relationships

Composes outgoing 2
Target Element Element Type
Privacy Management System Software System
Privacy Request Submit API Endpoint
Part of incoming 2
Source Element Element Type
Privacy Management System Software System
Privacy Request Submit API Endpoint
Owned by incoming 1
Source Element Element Type
Data Subject Request Aggregate Data Aggregate
Served by incoming 1
Source Element Element Type
Security GKE Cluster Cloud Service

Architecture Context

Diagrams

Not yet referenced in any diagram

Properties

Type Software Subsystem
Layer Application
Domain Security and Compliance
Status active
Owner Security Team

Additional Metadata

Catalog Id SUB-SEC-005
Environments production, staging
Owns Data Aggregates Data Subject Request Aggregate
Served By Cloud Services Security GKE Cluster
Archimate Type application-component
C4 Type Container
Togaf Type Application Component

Meta Model

Business
Organization
Application current
Technology

Actions