Skip to content
Last updated: 2026-04-04
Reference

Compliance issues

The Compliance Issues page tracks compliance issues that need resolution. Use it to monitor outstanding issues, review resolved items, and maintain an audit trail of your organization's compliance responses.

URL path: /data-controllers/{id}/dashboard/compliance-issues

Access: Navigate directly or select View all issues from the Breach & Incident Report page.

How it works

When Dxtra detects a compliance issue — such as a missed deadline, an incomplete workflow, or a configuration gap — it creates an issue record. Each issue includes a description, status, and resolution date (if resolved).

Issues are created automatically when Dxtra identifies a compliance risk, or manually by your team when they spot something that needs attention.

Issue types

Dxtra tracks several categories of compliance issues:

Rights request issues

  • DSRR Deadline Exceeded — A data subject rights request was not completed within the required regulatory timeframe (e.g. GDPR one-month, CCPA 45-day). This is the most common issue type and is created automatically when a deadline passes without resolution.
  • DSRR Processing Delayed — A rights request is approaching its deadline without sufficient progress.

Breach-related issues

  • Breach Notification Overdue — A breach report has not been submitted to the supervisory authority within the required timeframe (e.g. GDPR 72 hours).
  • Breach Response Incomplete — A breach report is missing required fields or has not been finalized.

Governance issues

  • Assessment Overdue — A scheduled DPIA, TIA, or vendor risk assessment has not been completed.
  • Processor Agreement Missing — A data processor is active but does not have a signed Data Processing Agreement on file.
  • Consent Configuration Gap — A processing purpose is active but does not have a valid consent mechanism or documented legal basis.

Documentation issues

  • Privacy Notice Update Required — Regulations or processing activities have changed and the published privacy notice is out of date.
  • Processing Activity Record Incomplete — An Article 30 record is missing required fields.

Viewing issues

The page displays the total number of issues and lists each one with its details. Each issue shows:

  • Description — What the issue is and what triggered it
  • Status — Open or Resolved
  • Created date — When the issue was first detected
  • Resolution date — When the issue was marked as resolved (if applicable)

You can review both open and resolved issues to track your compliance posture over time. Issues that are resolved are retained for audit purposes — they demonstrate that your organization identifies and addresses compliance risks proactively.

Tip

Review the Compliance Issues page regularly (at least monthly) as part of your compliance program. A history of promptly resolved issues is strong evidence of accountability during regulatory audits.

Compliance notifications

Dxtra generates "Compliance Cause for Concern" notifications that appear in the dashboard and as notification messages. These alert you when action is required. Examples include:

  • Unapproved documents — "[New, Updated] [Assessments, Policies, Notices, Agreements, Purposes] Have Not Been Approved. Please review, edit, and approve the updated documents using the link below." Only approved documents (Privacy Labels, Privacy Overview, Privacy Notice) can be published to the Transparency Center.
  • Consent form not selected — "Consent Form for [e.g. Data Sharing with Third Parties] Has Not Been Selected, Saved and Approved." Only approved consents can be activated in the Transparency Center.
  • Rights request not verified — "Data Subject Rights Request NOT VERIFIED as Completed. Data Subject with the unique anonymous identifier [DID] has not verified that their Rights Request has been completed." Prompts you to contact the data subject directly and mark the request as verified in Rights Management.
  • MFA not enforced — "[Organization Name] has not enforced Multi-Factor Authentication for Team Members." Directs you to Settings → Team and Security to activate MFA.

Notifications link directly to the relevant dashboard page so you can take action immediately.