Salesforce

Enabling Web Form Verification Settings

Printable View
« Go Back
Information
Enabling Web Form Verification Settings
UUID-a7306241-6c83-7dad-7554-df02c5dacfb6
Article Content

You can enable verification settings for web forms so data subjects can authenticate their email addresses and existing accounts when accessing web forms, as well as verify the identity of data subjects during request intake.

To enable verification for web forms

  1. On the Privacy Rights Automation menu, select Setup > Web Forms. The Web Form Templates screen appears.

  2. Hover over the desired web form tile to reveal and click the View button. The Web Form Customization screen appears.

  3. Navigate to the Verification tab and enable your desired settings. For more information, see Verification Settings Screen Reference.

  4. Click the Save to save your verification settings.

To resend email confirmation alerts

With a OneTrust 6.21 preview feature, you can resend email confirmation notifications to data subjects whose email address has yet to be verified. This option is only for requests that are held in the UNVERIFIED workflow stage.

  1. On the Privacy Rights Automation menu, select Setup > Requests. The Requests screen appears.

  2. Click a Request ID to open the Request Details screen.

  3. Click the Context Menu icon context_menu_icon_v2.png in the header. The Context menu appears.

  4. Select Resend Email Confirmation Verification. The Resend Verification Email modal appears.

    resend_verification_modal.png

  5. Click the Send button to confirm your choice. OneTrust will resend the email confirmation to the data subject's submitted email address.

Verification Settings Screen Reference

Authentication Methods

authentication_methods.png

Field

Description

Enable Authentication on Web Form

Select to configure authentication through an Open ID Connect (OIDC) provider. This will require users to authenticate with an existing account when accessing the web form.

For more information about configuring single sign-on authentication, see Configuring OIDC Implicit Grant Type Authentication for Web Forms.

Allow Access to Web Form without Authentication

Select to give users the option of logging in with an existing account to access the form or proceed without logging in.

Identity Provider Configuration

Select or create a new Identity Provider and provide a base URL for this configuration. Validate the base URL to proceed.

For more information, see ID Verification & Authentication Methods.

Verification Methods

verification_methods.png

Field

Description

Enable Email Verification

Enable to require data subjects to double opt-in and verify their email address. These requests will appear in the Request Queue on the Requests screen as Unverified.

Set Requests to Expire

Enable to automatically expire unverified requests after a specified number of days.

Days Allowed to Verify Request

Enter the number of days a data subject has to verify the request before it expires.

Resend Verification Email

Enable to allow the re-sending of the email that will remind data subjects to verify their email address for unverified requests before they expire.

Days Before Verification Reminder

Enter the number of days after which a data subject will be reminded to verify their email address.

Enable Third-Party ID Verification

Select to enable verification of a user's identity with an external Identity Provider. You will need to provide your third-party verification provider's account details to OneTrust in order to set up the configuration.

For more information about configuring ID verification and OneTrust's supported practices, see the OneTrust ID Verification Framework Guide.

Select Verification Credentials

Once your account has been seeded with your third-party verification account details, you can select that provider here or add a new configuration.

Enable Phone Number Verification

Enable to allow data subjects to verify their phone number.

Verification Conditions

You can configure verification conditions to define criteria that determine which verification methods are applied to a request.

Note

You must enable more than one verification method to configure verification conditions.

verification_conditions.png

Field

Description

Skip Verification for Auto-Rejected Requests

Enable to skip verification for any requests set to be automatically rejected based on automation rules.

Default Verification Method

Note

This field will only display once a rule is added.

Select a default verification method from the selection menu.

Verification Conditions

Click the Add Rule button to configure a new conditional rule.

Rule Name

Enter a name for the rule.

Field

Select a field. The following fields are available as conditions:

  • Subject Type

  • Request Type

  • Country

  • State

Operator

Select an operator for the rule.

Value

Select a value that corresponds to your selected field.

Note

Conditions with multiple values selected in this field will trigger when any one of the values meets the condition.

Verification Conditions: Things to Know

  • All three verification methods (email, third party ID, and phone number) can be enabled at the same time, but cannot all be used on the same rule. If all three verification methods are enabled, a rule must be configured.

  • Rules can be added if at least one verification method is enabled.

  • Rules will not be processed for requests created via API. Only the default verification will be applied.
 
Article Visibility
11,365
Translation
English
Checked
Powered by