Combined Privacy Management release notes for upgrades from Washington DC to Xanadu

How to use this page

To help you prepare for your upgrade, we have combined the cross-family Privacy Management release notes onto one page. Read this summary of the new features, changes, and updated information for your product from Washington DC to Xanadu.

Tip:

If there were no updates for a release notes section in a certain family release, we included a short note for your reference. For example, if a product did not have any updates in Tokyo, the row says "No updates for this release."

Important information for upgrading Privacy Management to Xanadu

Before you upgrade to Xanadu, review these pre- and post-upgrade tasks and complete the tasks as needed.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

New features

Between your current release family and Xanadu, new features were introduced for Privacy Management.


Release	Release notes
Washington DC	Privacy Case Management Use the Privacy Case Management application that enables you to report and manage privacy violations and complaints. The solution allows for the efficient management of privacy breaches and complaints through collaboration with various teams which help in investigating the root cause and key details of the breach reported. Privacy Case Management integration for RadarFirst Utilize the Privacy Case Management integration for RadarFirst to automate privacy incident risk assessment and quickly get clear, actionable notification obligations. Any data breach must be assessed by the privacy team to understand if there are any regulatory notification obligations and report the incident to the regulator within the prescribed time. RadarFirst helps to understand the regulatory notification obligations associated with the breach. Functional domain Segregate, associate, and view data related to a Privacy functional domain by using the Functional domain field. The Functional domain field is available in the forms such as Entity, Control, Control Objective, Policy, Authority document, Citation, Entity type, Entity class, Issues and so on. By utilizing the Functional domain field capability, the need to specify content reference with Privacy on authority documents and policies has been removed.
Xanadu	Personal Data Rights Use the Personal Data Rights application that provides configurable workflows to manage and automate personal data rights requests efficiently, reducing the risk of non-compliance. The Personal Data Rights application enables customers to efficiently manage and fulfill Data Subject Access Requests (DSARs), consumer rights requests, and so on, ensuring compliance with privacy regulations. The application helps organizations to handle requests related to the personal data rights of their consumers while ensuring that employees can maintain data protection standards globally. Create data lineage Establish a data lineage to understand how data is being consumed and shared in a given processing activity. Creating a data lineage also helps you to understand and manage the associated risks for the data being shared. This feature provides a visual representation of data lineage or hierarchy. Create a regulatory agency Create regulatory agencies in the Privacy Workspace to identify the relevant regulatory authorities that are responsible for overseeing the businesses in the public interest. The centralized library consolidates all regulatory communication via emails. Collaborate and chat with cross-functional teams for processing activities, privacy cases, privacy assessments, and personal data rights requests Initiate quick discussions with key stakeholders while working on a processing activity, privacy case, or a personal data rights request. The chat feature is integrated with Microsoft Teams and a group is automatically created on Microsoft Teams when a discussion is initiated. The chat conversations that take place using the Discuss button are stored in the respective record making it simpler for the privacy teams to refer to them when working on a task. View smart attestations on the processing activities Use the Smart Assessment Engine feature to respond to attestations. View the reports of the new control attestations on the landing pages of the privacy analyst and the privacy manager. Utilize the filter in the Attestations report to select if you want to view the classic attestations or the new attestations. Changes in roles with the Privacy Employee user application Note: Only applicable to the customers with the GRC Privacy Employee User application (sn_privacy_emp) installed. When you install the new GRC Privacy Employee User application and assign the sn_privacy_emp.privacy_employee role to your employees, the role enables your employees to perform the following operations from the Employee Center: Proactively request privacy impact assessments (PIAs) for new implementations, applications, and processes from the Employee Center. Report privacy cases related to data privacy policy and regulatory violations. Read and acknowledge organizational privacy policies. Create policy exceptions. Create privacy issues. Changes in roles with the GRC: Privacy Lite User application If the GRC: Privacy Lite User application (sn_privacy_lite) is installed, the following roles are considered as lite operators: sn_privacy.business_user sn_privacy.assessment_responder sn_privacy_case.privacy_case_business_user sn_grc_pdr.data_owner_admin Users with the lite operator role can do the following: Respond to privacy assessment tasks as business users. Respond to the processing activity's criticality risk assessments and object-based assessment. View, update, and close assigned issues. Respond to the assigned control attestations. Respond to the assigned manual indicator tasks. Create, update, and close assigned remediation tasks. Work on the processing activity as a business user when it’s assigned to you to collect the required details. Work on breach assessments and other privacy case tasks. Respond to the detailed privacy risk assessments on each risk identified on a processing activity. Respond to the assessment and investigation tasks assigned by the privacy team. Work on personal data rights action tasks to handle data according to the requester's requests.

Changes

Between your current release family and Xanadu, some changes were made to existing Privacy Management features.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

Removed

Between your current release family and Xanadu, some Privacy Management features or functionality were removed.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

Deprecations

Between your current release family and Xanadu, some Privacy Management features or functionality were deprecated.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

Activation information

Review information on how to activate Privacy Management.


Release	Release notes
Washington DC	Install Privacy Management by requesting it from the ServiceNow Store. Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.
Xanadu	Install Privacy Management by requesting it from the ServiceNow Store. Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.

Additional requirements

If any additional requirements were introduced or changed for Privacy Management we have noted them here.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

Browser requirements

If any specific browser requirements were introduced or changed for Privacy Management we have noted them here.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

Accessibility information

Review details on accessibility information for Privacy Management, such as specific requirements or compliance levels.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

Localization information

If there are specific localization considerations for Privacy Management we have noted them here.


Release	Release notes
Washington DC	No updates for this release.
Xanadu	No updates for this release.

Highlight information

If there are specific highlight considerations for Privacy Management we have noted them here.


Release	Release notes
Washington DC	Use the Privacy Case Management application to report and manage privacy violations and complaints. Utilize the Privacy Case Management integration for RadarFirst to automate privacy incident risk assessment and quickly get clear, actionable notification obligations. Refer to the Functional domain field that is automatically set to Privacy when the users with privacy roles work on forms such as processing activities, controls, and so on. See Exploring Privacy Management for more information.
Xanadu	Use the Personal Data Rights application to manage personal data rights requests from your customers or consumers, and employees in compliance with global privacy regulations. Establish a data lineage to visualize data consumption, sharing, and the associated risks for a processing activity. Use the Smart Assessment Engine to respond to and view new control attestations related to your processing activity. Create a regulatory agency library to store and access regulatory details, including correspondence with the regulators. Initiate chats from privacy assessments, processing activities, privacy cases, and personal data rights requests to collaborate with various teams to ensure quick responses. See Explore for more information.