Updates:

1. Allow Skipping Verification Review for Specific Request Types (11328): Introduced the ability to enable the skipping of the verification review process for select request types. This setting can be found in the features and regulations configuration section within the request processing tab. The following request types are eligible for this skip:
   • Do Not Sell
   • Right to Limit the Use and Disclosure of Sensitive Data
   • Right to Opt out of Sharing
   • Right to Consent
   • Right to Withdraw Consent
2. Multi-Language Support for Request Form Generator (11268): The request form generator now offers the capability to support multiple languages, enhancing user accessibility and engagement.
3. Configurable Email Verification Duration (11335): Introduced the ability to allow for the customization of the duration of time required for email verification.
4. Enhanced Error Messaging for Privacy Request Processing (11454): A more accurate and informative error message has been implemented to convey proper handling when Truyo encounters issues in processing privacy requests.
5. “None of These Apply” Option for Request Forms (11524): Request forms have been enhanced to include the option “None of these apply,” providing users with a more comprehensive range of choices.
6. Clearer Text for Opt-In/Out Slider for Consent (11609): The cookie consent mechanism has been updated to include clearer language on toggle buttons, facilitating a better understanding of whether a user has opted-in or out.
7. Update Request Type Names per Regulation (11525): Corrected naming conventions have been applied to accurately display request type names aligned with organizational regulations within the portal.
8. Support for “ext” Query Parameter (11608): “Do not sell” and “opt” request forms now accommodate an optional “ext” query parameter. This parameter, if sent by an organization, maps to the externalConsumerId value in the make request API call.
9. Persistent Upload Button for In-Progress Tasks (11696): Tasks that are in an in-progress status now feature a consistent upload button, ensuring seamless document submission.
10. GPC Do Not Sell Request Workflow Enhancement (11659): Portal administrators are now empowered to select the desired regulation for GPC-based Do Not Sell requests, offering more flexibility in request processing.

Security Updates:

• A continuous implementation of proactive security measures has been underway as part of our comprehensive security plan. No confirmed security breaches or attacks have been reported for the addressed issues to date.

Security Patch:

• A security patch has been applied to resolve potential vulnerabilities associated with the Resend Verification email link (11663).
• External calls have been reduced to enhance security. (11573)

Infrastructure Updates:

• The consent traffic flow has been optimized to reduce load on the product.

Bug Fixes:

1. Carriage Returns Allowed (11564): Carriage returns are now permitted, ensuring proper formatting of content.
2. Responsive Custom Content with reCAPTCHA (11306): Custom content is now responsive on pages with reCAPTCHA enabled.
3. Updated Request Names/Descriptions (11525): Names and descriptions of requests within the organization portal have been aligned with actual regulation naming conventions.
4. Centered Icons on Assessment Action Items (11590): Icons on assessment action items are now properly centered for enhanced visual consistency.

Hot Fixes:

• Production updates (6.6.0) have been applied to address various issues, including completion of Account download tasks (11617), random parameter addition to client image URLs (11600), and rendering of text areas for authorized agents (11494).

Upcoming Features:

1. Infrastructure Upgrade: Upcoming upgrades for components such as Spring Cloud, Spring Boot, JDK, Swagger/JUNIT, and related elements are set to improve performance and security.
2. Pre-Categorization of Cookies: Enhancements to the cookie scanner will enable automatic categorization of cookies, streamlining data management.
3. Assessment Improvements:
   • SSP Generation for CMMC (Cybersecurity Maturity Model Certification).
   • Framework Assessments for AI with Scanning Capabilities.
   • DOD Scoring for CMMC Assessments.
   • Data Mapping Enhancements.
   • Privacy Risk Register allowing organizations to track and mitigate risk across multiple projects or initiatives.
4. Email Template Editor: An advanced template editing and viewing feature for email templates will be introduced, enabling tailored communications.
5. Verification Questions Enhancement: The verification question system will be fortified, offering different questions based on request type, origin, and attributes. Support for conditional questions, answer formatting, and required fields will be included.
6. Data Privacy Assessment Editor: Organizations will gain the ability to customize assessment questions within the Data Privacy Assessment module, enabling tailored evaluations.