Self-hosted GDPR DSAR portal that tracks every request against its statutory deadline.
DSARs arrive by email and the clock starts immediately, but most organisations have nothing tracking them — no deadline dashboard, no audit trail, just a shared inbox. Enterprise GRC software is overkill and expensive for a team that just needs to log requests, verify identity, and respond inside the 30-day GDPR window without missing it.
The dashboard flags overdue and due-soon requests, with deadline math following GDPR Art 12(3) exactly, including month-end clamping.
A public-facing form with email-based identity verification for intake.
Every status change, internal note, and extension grant is timestamped and permanent.
Captures Access, Deletion, Rectification, Portability, and Objection requests, shown throughout the admin interface.
Save canned acknowledgement, completion, and refusal text for reuse across requests.
Export request data for reporting or record-keeping.
Checkout isn't open yet. Leave your email and we'll send one note the moment Privara — Self-Hosted GDPR DSAR Management Portal can be purchased — nothing else.
2-minute web installer, plain PHP 8.1+ with MySQL or SQLite (WAL mode), no Composer or build step — Dockerfile included.
No — it helps you meet the deadline and maintain an auditable record of every request; whether your responses are legally sufficient is your responsibility and depends on your jurisdiction and the specifics of each request.
Yes, via PHP's mail() by default, with SMTP host, port, username, and password configurable in the admin settings panel for reliable delivery via services like SendGrid or Postmark.
All five GDPR rights — Access, Deletion, Rectification, Portability, and Objection.
It's a self-contained PHP script you own and run — no SaaS dependency, no licence server, no phoning home.
Yes — plain PHP 8 + MySQL; no Composer, no Node, no cron jobs required; if your host runs WordPress it will run Privara.
The live demo is being prepared — check back shortly.
Demo — coming soon