Resources
Walkthroughs, guides, and starter templates for DPOs and privacy teams covering document redaction, privacy request (DSAR/SAR) case management, Article 30 register building, and compliance.
Updated as we ship product changes. Use alongside our Privacy and Security pages for security reviews or DPIAs.
Start here
Stop Panic‑Redacting Response Packs | Ghost
Intro: why teams panic-redact response packs — and how Ghost helps you ship clean response files without the scramble.
Watch videoIntroduction to Ghost
Start here if you have never used Ghost. Learn the layout, how matters scope your data, and where to open Redaction, Privacy Request Manager, Article 30 Register, and Compliance.
Read guideSettings and team management
Configure your organisation profile, invite team members, manage roles and seats, handle billing, set notification preferences, and fine-tune advanced settings.
Read guideIntegrations and webhooks
Set up Slack or Microsoft Teams for channel alerts via each platform's API, or create signed webhooks to push real-time JSON payloads to SIEMs, ticketing systems, and automation platforms.
Read guideCalendar integration
Bring DSAR response windows, breach notification clocks, DPIA questionnaire due dates, and ROPA reviews into Google Calendar, Outlook, or Apple Calendar with one-off downloads or a self-updating subscribable feed.
Read guideClient and matter management
Create and manage matters to partition work by client or project, generate privacy request intake URLs, enforce per-matter membership, and archive matters when complete.
Read guideRedaction
Ghost Redact: AI-Powered Document Redaction for Privacy Requests
AI-assisted detection, review, and export for privacy request response documents.
Watch videoRedaction workspace basics
Walk through Document Redaction from scratch: sessions, uploads, batch processing, manual and optional AI-assisted marking, folders, and export.
Read guideAdvanced redaction techniques
Go beyond the basics with AI-assisted PII detection, multi-file batch processing, folder organisation, session status filters, download restrictions, and linking sessions to privacy request cases.
Read guideFolders in the redact workspace | Ghost
SoonCreate folders, move documents between them, and keep response packs organized as your caseload grows.
Privacy request management
Privacy Request Manager overview
Learn the Privacy Request Manager step by step: navigation, cases, templates, tabbed reports and analytics, public intake, configuration, and matter-scoped data.
Read guidePrivacy request analytics and reports
Master the Reports & Analytics page: summary metrics, trend analysis, monthly volume charts, audit log exports, and audit-ready compliance packs.
Read guidePrivacy request intake and configuration
Set up and customise how privacy requests arrive: public intake forms, identity verification, branding, custom fields, case templates, and auto-archive and auto-purge timelines.
Read guideProcessing inventory & records
Starter Article 30 register spreadsheet (CSV)
Standard Article 30 register columns you can open in Excel or Google Sheets — one row per processing activity. Not a substitute for legal advice; use alongside Ghost’s Article 30 Register when you outgrow the sheet.
Get templateArticle 30 Register overview
Learn the Article 30 Register end to end: activities, templates, spreadsheet import, gap analysis, the review queue, PDF and Excel export, and collaboration.
Read guideRegister gap analysis and review
Keep your Article 30 register audit-ready: use Gap Analysis to find missing fields and unsafeguarded transfers, then work through the Review Queue to confirm every activity is current.
Read guideCompliance
Compliance hub overview
Learn the Compliance module from the hub: incident register, DPIAs, interest assessments, third-party management, consent and lawful basis, staff training, policies, and data retention.
Read guideBreach management
Log personal data breaches, track the supervisory authority notification window, classify severity, draft regulator and individual notifications, and export breach records.
Read guideImpact assessment overview
Start here for DPIAs: when an assessment is needed, screening criteria, templates, the creation wizard, and how the list fits together.
Read guideImpact assessment questionnaires and responses
Manage stakeholder questionnaires on an DPIA: statuses from pending to accepted, reminders, review rounds, and what you see on the detail page.
Read guideImpact assessment risk scoring and sign-off
Score risk from questionnaire weights, build the risk register, move through review and approval, link to the Article 30 register, and export a PDF.
Read guideLegitimate interest assessments
Use the LIA workflow for the three-part test: purpose, necessity, balancing, outcome, and audit trail on the detail page.
Read guideAPI
Ready to try this in your own workspace?
Start a free trial and see Ghost in action with your own documents, or book a walkthrough with our team.