Conduct related ongoing compliance monitoring activities in coordination with the organization’s other compliance and operational assessment functions.
Monitor the process for receiving and responding to complaints, concerns, or questions from individuals about the organizational privacy practices. Complaints, concerns, and questions from individuals can serve as a valuable source of external input that ultimately improves operational models, uses of technology, data collection practices, and privacy and security safeguards. Provide complaint mechanisms that are readily accessible by the public, include all information necessary for successfully filing complaints (including contact information for the Senior Agency Official for Privacy (SAOP)/Chief Privacy Officer (CPO) or other official designated to receive complaints), and are easy to use. Include tracking mechanisms in complaint management processes to ensure that all complaints received are reviewed and appropriately addressed in a timely manner.