When a customer submits a data erasure or GDPR-related request, this must be routed to the Security team via a Security ticket. Agents cannot action these requests independently.
Step 1 — Acknowledge the request promptly.
Reply confirming receipt. Do not provide a resolution timeline.
Step 2 — Open a Security ticket immediately.
Include: customer name and email, request ID if provided, original ticket number, and any details the customer included in their request.
Step 3 — Set customer expectations.
Let them know the Security team is handling it, there is no set ETA, and they will be contacted once the review is complete.
Step 4 — Do not discuss specifics.
Do not confirm, deny, or describe what data exists or what actions will be taken. All communication after handoff goes through Security.
Important: Never attempt to locate, delete, or modify customer data yourself. This must go through Security without exception.
Comments
0 comments
Please sign in to leave a comment.