Consent records document that a data subject has given their agreement to have their personal data processed for a specific purpose. Under GDPR, consent must be freely given, specific, informed, and unambiguous.
Steps
- Log in to your DataShield HQ workspace.
- Click Data Subjects in the left-hand navigation menu.
- Find and click on the data subject you want to record consent for. If they don't exist yet, add them first.
- Click on the Consent Records tab within the data subject's profile.
- Click the + Add Consent button.
- Fill in the consent details:
- Purpose – The specific reason for processing (e.g. "Marketing emails", "Analytics").
- Lawful Basis – Select Consent or the appropriate legal basis.
- Consent Date – The date the subject gave consent.
- Expiry Date – Optional. When the consent expires.
- Notes – Any additional context (e.g. "Double opt-in via website sign-up form").
- Click Save. The consent record is now attached to the data subject's profile.
Tips
- Always record how consent was obtained (e.g. checkbox on sign-up form, verbal consent) in the Notes field.
- Consent records are timestamped and auditable — they appear in the Audit Log.
- If consent is later withdrawn, use the Revoke Consent action rather than deleting the record.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article