Skip to main content

February 2026

This page documents all customer-facing changes to the DataGrail application made in February 2026. Additional entries will be added every week on Friday.

Week of February 9

🚀 Features Added

  • Direct Contact Integration duration can now be adjusted per Request Policy, allowing for specific control of processor SLA by location.
  • Privacy Request start time can now be configured by Request Policy, allowing you to "start the clock" either when the request is created or verified.

🐛 Bugs Squashed

  • Resolved an issue preventing some assessment PDFs from being downloaded.
  • Resolved an issue preventing some Shopify Integration deletions from completing.
  • Resolved an issue blocking some Privacy Requests from moving to the next workflow step after all integrations were complete.
  • Resolved an issue installing the GitHub Integration.
  • Resolved an issue requiring some Privacy Requests to enter the wizard step, despite having an automation setting to skip it.

Week of February 2

🚀 Features Added

🛠 Changes Made

  • Privacy Request voicemails can now be downloaded at any stage of the workflow.
  • The Discovered Integrations page now includes a filter for detected risk level.
  • Migrated the Shopify Integration to the GraphQL Admin API.

January 2026

This page documents all customer-facing changes to the DataGrail application made in January 2026. Additional entries will be added every week on Friday.

Week of January 26

Tracking Details Grouping

🚀 Features Added

  • Added support for the following languages in Request Manager and Consent: Indonesian, Hindi, Arabic, Korean, Malay, Thai, and Chinese (Simplified & Traditional).
  • Added anonymization support for the Oracle Opera Cloud Integration on deletion requests.
  • The Tracking Details asset can now group entries by name or vendor, allowing for better organization when many tracking services are listed.
  • Tracking services can now be exported from DataGrail as JSON to support programmatically generated cookie policies.

🛠 Changes Made

  • Multiple System Inventory performance optimizations, resulting in a 98% speed improvement.
  • System Inventory items are now grouped by system to make larger inventories more manageable.
  • Multi-Brand users will now only see integrations associated with their group/brand, except for the Super Admin role.
  • New integration processing options in Workflow Automations
    • Skip all - Don't process any remaining integrations
    • Process all - Process every integration
    • Process by brand - Only process global integrations + integrations assigned to the request's brand/group

🐛 Bugs Squashed

  • Resolved formatting issues when filtering the integration list by a multi-brand group.
  • Resolved an issue processing identifiers for some multi-brand groups.
  • Resolved an issue preventing the specific location for Opt Out Requests from showing.

Week of January 19

🚀 Features Added

🛠 Changes Made

  • Improved error message UI on the login page.

🐛 Bugs Squashed

  • Resolved an issue causing some scanned cookie domains to show as obfuscated.
  • Resolved an issue blocking some Amplitude Integration deletions when the provided User ID is an email address.
  • Resolved an issue preventing some users from being identified with the Cordial Integration.

Week of January 12

Risks Tab

🚀 Features Added

  • Risks that are created within assessments are now available on a new Risks tab on the Assessment Overview page for an easy overview.
  • Released Consent Plugins for WordPress and Shopify, allowing consent preferences to be sent to the platform from DataGrail automatically.

🐛 Bugs Squashed

  • Resolved an issue preventing some months from being included on the Consent Dashboard and Audit Logs.

Week of January 5

🚀 Features Added

  • Enhanced wildcard rules have been added for Cookie Management, allowing you to better categorize consistent cookie patterns.
  • Released Unmanaged Cookie Behavior controls for Consent, allowing you to treat unmanaged cookies as classified under a category, or even block and delete all unmanaged cookies.
  • The complete Consent Audit Log is now available by month directly within the DataGrail app.

🛠 Changes Made

  • Readability improvements to the integration list.
  • Added the ability to archive unmanaged cookies that are not relevant or adding noise to the list.
  • Introduced batch deletion for the MailChimp Integration, offering better processing efficiency for high-volume customers.

🐛 Bugs Squashed

December 2025

This page documents all customer-facing changes to the DataGrail application made in December 2025. Additional entries will be added every week on Friday.

Week of December 15

Browser Signal Notice Asset

🚀 Features Added

🛠 Changes Made

  • Performance optimizations for the AirTable Integration to support better privacy request throughput.
  • Added an option to enable whole-record deletion on the Braze Integration to better support high-volume processors.
  • Activity Logs on privacy requests more precisely indicate when an integration is skipped vs. when no data is found.

🐛 Bugs Squashed

  • Resolved an issue preventing the consent audit log from being downloaded for some customers.
  • Resolved an issue preventing category selections from saving when suggested cookie rules were added.
  • Resolved an issue causing the PayPal Integration to fail on some privacy requests.
  • Resolved an issue causing the consent publish status to show "In Progress", despite publishes completing successfully.

Week of December 8

12/12 New Features

🚀 Features Added

  • Share the services and cookies that are running on your site using the new Tracking Details Asset on the Consent Banner.
  • Quickly identify and configure integrations using the new Discovered Integrations page.
  • Scan your Mixpanel instance with newly-released Responsible Data Discovery capabilities.

🛠 Changes Made

Week of December 1

🚀 Features Added

  • Added new state-specific policies for Rhode Island, Kentucky, and Indiana to ensure your team stays compliant.

🛠 Changes Made

  • Enhanced Live Data Map System metadata, so your team has better context on what systems do and how they process data.
  • Improved deletion logic for the Airtable Integration to better support a high volume of privacy requests.
  • Standardized all integration names to create better parity between Live Data Map Systems and Request Manager Integrations.

November 2025

This page documents all customer-facing changes to the DataGrail application made in November 2025. Additional entries will be added every week on Friday.

Week of November 24

🚀 Features Added

  • Control access to the DataGrail platform through Multibrand Group Permissions, which allows you to map your Okta users to the Multibrand groups within the DataGrail app.

🛠 Changes Made

  • Integration connection attempt errors are now surfaced on the Integration Errors page.
  • Released Request Manager Agent v0.14.0 which improves transaction commit handling for deletion requests.

Week of November 17

11/17 New Features

🚀 Features Added

  • Configure request policies directly with Self-Service Policy Management. Your team can enable and disable specific policies, edit available privacy rights and durations on policies, and update policy locations.
  • Monitor API errors across all integrations via the Integration Errors dashboard, so you can identify trends and take action quickly.

🛠 Changes Made

  • Refreshed the settings page UI, allowing your team to better navigate DataGrail settings.
  • Added an optional include_identifiers field to the V2 privacy_requests endpoint.
  • Added API deletion to the TeamUp Integration.

Week of November 10

11/10 New Features

🚀 Features Added

  • Updates to the Privacy Dashboard that help provide better data for your team:
    • New time filters
    • New Requests by Type chart
    • New Requests by Source chart
  • Added a Local Session/Storage blocking plugin for Consent that can block local storage using the Cookie Rules table.
  • Custom risk types can now be created in Risk Register.

🛠 Changes Made

  • The title style on the consent banner now publishes as an h2 for SEO, effective the next time you publish.
  • Added date filters for Opt Outs Requests.

🐛 Bugs Squashed

  • Resolved an issue preventing requests from exiting "Extracting Identifiers" after identifiers were manually populated.
  • Resolved an issue preventing the dashboard from loading when certain filters were applied.

Week of November 3

11/3 New Features

🚀 Features Added

  • Risk Register is now connected to Risk Assessments, enabling you to:
    • Flag Risks from Assessments: You can now log a risk directly from an assessment question without disrupting your workflow. Risk Register will display the risk with a source link to the assessment.
    • Prioritize Assessments by Risk: Sort and filter the Assessments table by the number of associated risks.
  • US Privacy Strings (whether a user has opted out of data sales) can now be retrieved through the following consent browser console command: window.DG_BANNER_API.getUSPrivacyString()
  • New Inflection Integration for Request Manager with API access capabilities.
  • Added a search bar to the Opt Out Requests page, allowing you to quickly find requests by email, first name, and last name.

🛠 Changes Made

  • Extracted identifiers are now included in the response to the privacy_requests endpoint on the V2 API.

🐛 Bugs Squashed

  • Resolved an issue preventing custom systems from being edited in System Inventories.
  • Resolved an issue causing the publishing status to persist in the Consent UI, despite the process completing successfully.
  • Resolved an issue causing the Dropbox and Arity Integrations to sporadically return a 409 error during data extraction or deletion.

October 2025

This page documents all customer-facing changes to the DataGrail application made in October 2025. Additional entries will be added every week on Friday.

Week of October 27

🛠 Changes Made

🐛 Bugs Squashed

  • Resolved an issue preventing unverified Opt Out Requests from showing when filters were applied to the table.
  • Resolved a timeout error preventing the NetSuite Integration from completing on some Privacy Requests.
  • Resolved an issue causing the Entra ID Integration to disconnect for some customers.

Week of October 20

🚀 Features Added

  • Released the Webhook Integration, which sends notifications of new Privacy Requests, allowing you to process requests in your own systems and report results back to DataGrail.

🛠 Changes Made

🐛 Bugs Squashed

  • Resolved an issue preventing some systems from being tagged with newly-added Processing Activities.

Week of October 13

🚀 Features Added

🛠 Changes Made

  • Improved backend processing of Opt Out Requests to allow requests to be processed more quickly.
  • Privacy Requests created via phone are now automatically closed if the Data Subject does not leave a voicemail.
  • Long data file strings now wrap in the TSV viewer in Request Manager.
  • Released Request Manager Agent v0.10.2, which updates dependencies.
  • Released Data Discovery Agent v0.9.1, which updates dependencies.

🐛 Bugs Squashed

Week of October 6

10/6 New Features

🚀 Features Added

  • Access Request Results emails can now be resent to Data Subject from the Data Subject Request Details page.
  • You can now suppress the final notification email for Privacy Requests from the Data Subject Request Details page or the V2 API.

🛠 Changes Made

  • All actions to close a Privacy Request have been rolled up under the new Close Request action, allowing you to indicate a specific "close reason" and email the Data Subject, if desired.
  • Improved the System Detection model to increase breadth and quality of detected systems.
  • Token Based Authentication for the Oracle Netsuite Integration is no longer supported. OAuth 2.0 authentication is now required.

🐛 Bugs Squashed

  • Resolved an issue preventing some cookies set on subdomains from being surfaced by the Cookie Scanner.

September 2025

This page documents all customer-facing changes to the DataGrail application made in September 2025. Additional entries will be added every week on Friday.

Week of September 29

🚀 Features Added

  • Retry failed integrations for any data subject request with the push of a button.
  • Webhooks Integrations notify your internal systems when a privacy request is ready for processing.

🛠 Changes Made

  • Policies can now be searched and filtered.
  • Privacy Policy Link now displayed for both Cookies and Tracking Services.
  • Added policy to support the Maryland Online Data Privacy Act.
  • Risks within Data Protection Impact Assessments (DPIA) now support adding optional comments.

🐛 Bugs Squashed

  • Improved error verbiage when attempting to remove an integration currently used in an automation.
  • Resolved an issue preventing the Yotpo Integration from successfully reconnecting.

Week of September 22

DataGrail Privacy Platform

🚀 Features Added

🛠 Changes Made

  • Location is now included when exporting Opt Out Requests from within the app.
  • Improved performance on the Cookie Management page.
  • The group dropdown is no longer required on the Privacy Request Center if the group is passed through the URL.

Week of September 15

🚀 Features Added

  • Added a Salesforce B2C Commerce Integration to support access requests against Salesforce Commerce Cloud orders.
  • Released the Privacy To-Do List, which provides an actionable list of tasks to set up your DataGrail instance.

🛠 Changes Made

  • Updated the Aftership API version to 2025-07.

Week of September 8

🚀 Features Added

  • Active Direct Contact emails can now be resent to the processor.
  • Added support to manually verify Privacy Requests in the "Pending Verification" state.

🛠 Changes Made

  • Consent will no longer throw an error if the site contains an uncategorized data-consent-id on an inline script.

🐛 Bugs Squashed

  • Resolved an issue where some Marketo API calls were malformed.

Week of September 1

🚀 Features Added

  • Updated the ServiceNow Integration to support customers without the customer_contact table. The sys_user table can now be queried on Privacy Requests.
  • Released the Integration Files API Endpoint.
  • Added support for custom Entity IDs for Microsoft Entra ID SSO.

🛠 Changes Made

  • The Marketo Integration has been updated to use the Authorization header.
  • Opt-Out Requests no longer require the first and last name field.

🐛 Bugs Squashed

  • Resolved an issue preventing the Algolia Integration from extracting data in some cases.
  • Fixed a UI issue on the API Keys page.

August 2025

This page documents all customer-facing changes to the DataGrail application made in August 2025. Additional entries will be added every week on Friday.

Week of August 25

🚀 Features Added

🛠 Changes Made

  • Updated the Jira integration to use a new search endpoint under the V3 API.
  • Improved retry handling for failed Opt Out Request integrations.

🐛 Bugs Squashed

  • Resolved an issue preventing PayPal data extraction from completing in some cases.
  • Resolved an issue preventing DataDog data extraction from completing in some cases.

Week of August 18

🚀 Features Added

🛠 Changes Made

  • User names can now be edited from the DataGrail settings page.
  • Improved the performance of the Data Subject Requests page.
  • Added alerts for System Profile pages that have newly surfaced data categories from Responsible Data Discovery.
  • Systems can now be added to the inventory without an associated Processing Activity.

🐛 Bugs Squashed

  • Resolved an issue preventing some direct contact integrations from being selectable in the "Pending Legal" state.
  • Resolved an issue preventing the final notification email from sending on requests denied by a workflow automation.
  • Resolved an issue preventing Dropbox from completing data extraction on some Privacy Requests.

Week of August 11

🚀 Features Added

🛠 Changes Made

  • Updated the Mixpanel Integration to use service account authentication.
  • Improved the retry logic for failed integrations on Opt Out Requests.
  • Released Request Manager Agent v0.10.0
    • Improved APIProxy Connector retry handling for requests when a response status code is not listed in the valid_response_codes or fail_retry_response_codes arrays.
  • Released Data Discovery Agent v0.9.0
    • Introduces Bring Your Own Integration (BYOI) adapter which allows integrating data sources via a RESTful API service.
    • Smart Scans enabled which will only scan new tables or tables with new attributes (schemaless not supported).
    • Improved schema scanning by identifying tables by the fully qualified name, including database/catalog and/or schema.

🐛 Bugs Squashed

  • Resolved an issue preventing Privacy Requests from being created using email webhooks.
  • Resolved an issue blocking new OAuth integration connections.
  • Resolved issues in the Responsible Data Discovery Agent:
    • Fixes syntax error on scientific notation values upon sampling of Databricks datasets.
    • Handles EmptyDataFrame responses for Athena partition queries.
    • Scans only MySQL base tables to avoid scanning views, and others with no table_rows resulting in exceptions.
    • Properly escapes tables with names that are SQL keywords (e.g., group, order, delete) to avoid SQL exceptions.
    • Handles empty collections in MongoDB.

Week of August 4

🚀 Features Added

  • The Marketo Integration now supports setting custom fields for Deletion and Opt Out Requests.
  • Added an option to export individual Processing Activities as a PDF.
  • Responses to custom Privacy Request Center questions can now be included on Direct Contact forms.

🐛 Bugs Squashed

  • Resolved an issue blocking Twilio data extraction for some phone numbers.

July 2025

This page documents all customer-facing changes to the DataGrail application made in July 2025. Additional entries will be added every week on Friday.

Week of July 28

🚀 Features Added

🛠 Changes Made

  • Increased the expiration time of Risk Assessment contributor links from 24 hours to 7 days.
  • Improved rate limit handling for the Facebook Marketing Integration.

🐛 Bugs Squashed

  • Resolved an issue causing some deleted systems to be surfaced again through System Detection.
  • Resolved an issue where the Consent Management Admin role could not see the DataGrail Dashboard.

Week of July 21

🚀 Features Added

🛠 Changes Made

  • Updated the Salesforce Integration API to version 62.0 and improved visualization of errors within DataGrail.
  • Opt Out Requests that are not verified within 7 days now automatically move to Canceled.
  • Improved retry logic for failed integrations on Opt Out Requests.

🐛 Bugs Squashed

  • Resolved an issue preventing additional links from being added to Consent Layouts.
  • Resolved an issue preventing the domain filter from working on the Cookie Management page.
  • Resolved an issue preventing the Entrata Integration from extracting data on Privacy Requests.

Week of July 14

🚀 Features Added

🛠 Changes Made

  • Refactored analytics for Consent on the Dashboard, allowing interaction metrics to be filterable by Consent Policy.
  • Improved the load time of the Systems page.
  • Updated the Segment Integration to handle the "partial success" deletion status.
  • Updated the UI for the Privacy Request Details view on an Access Categories request to provide a clearer call to action.

🐛 Bugs Squashed

  • Resolved an issue preventing users provisioned via SCIM from logging in.
  • Resolved an issue preventing new images from being added to Email Templates.

Week of July 7

🚀 Features Added

🛠 Changes Made

  • The integration list on a Privacy Request is now grouped by Integration Status: integrations with errors are shown at the top, processing in the middle, and complete at the bottom.
  • Improved integration error visualization for non-HTTP errors for integrations such as Marketo, SendGrid, and Slack.
  • Integrations on deletion requests that do not find data in the "Extracting Personal Data" state will now show Complete: Nothing to Delete instead of Complete: Deletion skipped.
  • Improved handling of international phone numbers for data subject verification.
  • The "General" Processing Activity can now be removed from Systems.

🐛 Bugs Squashed

  • Resolved an issue preventing custom favicons from showing on the Privacy Request Center.

June 2025

This page documents all customer-facing changes to the DataGrail application made in June 2025. Additional entries will be added every week on Friday.

Week of June 30

🛠 Changes Made

  • Added caching to the Facebook Marketing Integration to improve efficiency reprocessing failed requests.

🐛 Bugs Squashed

  • Resolved an issue preventing all Processing Activities from being included in the Data Processing Report.
  • Resolved an issue blocking some users from being verified when generating Inbound Assessments.
  • Resolved an issue preventing Opt Out Request exports from being properly filtered by brand.

Week of June 23

🚀 Features Added

  • Released Subdomain Sharing for Consent.
  • Released an Enteractive Integration with the access capability in Request Manager.

🐛 Bugs Squashed

  • Resolved an issue preventing the API Credentials Manager role from seeing the API Keys page.
  • Resolved an issue causing the Request Manager Wizard to skip when the required details were not inputted on a Privacy Request.
  • Resolved an issue causing some failed Consent publishes to show as successful.

Week of June 16

🚀 Features Added

🐛 Bugs Squashed

  • Resolved an issue causing the MailGun Integration to show as "disconnected" when a domain sending key is configured instead of a private API key.
  • Resolved an issue causing the Facebook Marketing Integration to attempt deletion on uneditable audiences.

Week of June 9

🚀 Features Added

  • Released the beta US Privacy Strings feature for Consent.
  • Released email notifications for uncategorized cookies and trackers in Consent.
  • Released Sub Domain Choice Sharing for Consent.

🛠 Changes Made

  • Redesigned the PDF Export for Risk Assessments.
  • Added support for the Privacy Request Center on multiple domains.
  • Multiple "open layer" buttons are now supported on the Consent Banner.

🐛 Bugs Squashed

  • Resolved an issue causing Internal Systems Integrations to show as "disconnected" when the inline data response callback is malformed.

Week of June 2

🚀 Features Added

  • Released Processing Activities for Live Data Map.
  • Detailed error information when connecting an API Integration has been added to Integrations page and includes response codes, request bodies, and headers.

🛠 Changes Made

  • Improved the validation of Data Subject Emails on Privacy Requests.
  • Updated the Facebook Marketing Integration API version to v23.0.

May 2025

This page documents all customer-facing changes to the DataGrail application made in May 2025. Additional entries will be added every week on Friday.

Week of May 26

🚀 Features Added

🛠 Changes Made

  • Improved the System Detection model, allowing for a higher volume of systems to be surfaced.

🐛 Bugs Squashed

  • Resolved an issue preventing Direct Contact Integrations from saving if the processor email included capital letters.

Week of May 19

🚀 Features Added

  • Added an optional audience parameter on Internal Systems Integrations for use with Auth0.
  • Released Request Manager Agent v0.9.3.
    • Resolved an issue where failed Snowflake deletion queries returned success to the orchestrator.
    • Disabled autocommit in the Snowflake connector so that groups of transactions that modify data are atomic.

🛠 Changes Made

  • Optimized the Stripe Integration for customers not using Issuing.
  • Added batch deletion to the Qualtrics Integration to improve efficiency processing high volumes of privacy requests.
  • Published custom questions can no longer be renamed in the Privacy Request Center to prevent workflows from being interrupted.
  • Improved batch deletion with the Amplitude integration.

🐛 Bugs Squashed

  • Resolved an issue preventing identifiers from being fetched on some Privacy Requests.
  • Resolved an issue preventing "Request Admin" users from creating Opt Out requests.
  • Resolved an issue preventing the assessment_type placeholder from being replaced on emails from the Risk Assessments Product.

Week of May 12

🚀 Features Added

  • Added a Privacy Request Integrations endpoint to the V2 API.
  • Added a Privacy Request Creation endpoint to the V2 API.
  • Released Request Manager Agent v0.9.2.
    • Disabled the Request Manager Agent job queue from logging job description, which includes PII, when the LOGLEVEL environment variable is not set to DEBUG.

🛠 Changes Made

  • Improved the deletion of Zendesk Users, avoiding a 422 response in some cases.
  • Removed %customer_name% as a required variable on Email Templates.

🐛 Bugs Squashed

  • Resolved an issue preventing identifiers from being included on Internal Systems Integration retries.

Week of May 5

🚀 Features Added

  • Released the beta "Custom Content Types" feature for Data Discovery, enabling customers to define and identify custom assets in connected systems.
  • Added a Privacy Request Index endpoint to the V2 API.
  • Added a Privacy Request Policies Index endpoint to the V2 API.

🛠 Changes Made

  • Released improved verification pages for mobile devices.
  • Added the ability to archive a Business Process.
  • Added batch deletion to the Segment Config Integration to improve efficiency processing high volumes of privacy requests.
  • Non-sensitive fields are no longer hidden in the Internal Systems Integration configuration within the app.
  • Improved error handling with the Stripe Integration.

🐛 Bugs Squashed

  • Resolved an issue preventing extremely large data files (3GB+) from being uploaded by Internal Systems Integrations.
  • Resolved an issue preventing some customers from adding a system to a Business Process.