User's Assigned Policies

User's Assigned Policies track the acknowledgement of Policy Versions by Users.

Get User's Assigned Policy details

🔒 Requires User Policies: List User's Assigned Policies permission.

Securitybearer
Request
path Parameters
required
number or string

A Drata integer ID or an email address of the form 'email:value'.

query Parameters
cursor
string

This parameter is used to paginate through results. No value is needed for the first request. If there are additional results, the response will contain a pagination.cursor value that can be used in the subsequent request to retrieve the next page of results

size
number [ 1 .. 50 ]
Default: 20

Number of results to return

sort
string (SortTypeLimitedEnum)

Which field to sort by

Enum: "createdAt" "updatedAt"
sortDir
string (SortDirectionEnum)

The direction to sort the data

Enum: "ASC" "DESC"
expand[]
Array of strings (UserPoliciesExpandEnum)

List of subcollections and sub-objects to expand

Items Enum: "policy" "policyVersion"
Responses
200

Successful

400

Malformed data and/or validation errors

401

Invalid Authorization

402

You must upgrade your plan to use this feature

403

You are not allowed to perform this action

404

Not Found

412

You must accept the Drata terms and conditions to use the API

500

Internal server error

get/users/{userId}/assigned-policies
Request samples 
Response samples 
application/json
{
  • "data": [
    • {
      • "id": 1,
      • "acceptedAt": "2025-07-01T16:45:55.246Z",
      • "createdAt": "2025-07-01T16:45:55.246Z",
      • "updatedAt": "2025-07-01T16:45:55.246Z",
      • "sourceType": "MY_DRATA",
      • "details": "string",
      • "policyId": 1,
      • "policyVersionId": 1,
      • "policy": {
        • "id": 1,
        • "name": "Acceptable Use Policy",
        • "description": "string",
        • "createdAt": "2025-07-01T16:45:55.246Z",
        • "updatedAt": "2025-07-01T16:45:55.246Z",
        • "assignedTo": "ALL",
        • "policyStatus": "ACTIVE",
        • "renewalDate": "2025-07-01T16:45:55.246Z"
        },
      • "policyVersion": {
        • "id": 1,
        • "version": 1,
        • "current": true,
        • "type": "UPLOADED",
        • "createdAt": "2025-07-01T16:45:55.246Z",
        • "updatedAt": "2025-07-01T16:45:55.246Z",
        • "renewalDate": "2025-07-01T16:45:55.246Z",
        • "subVersion": 1,
        • "description": "string",
        • "approvedAt": "2025-07-01T16:45:55.246Z",
        • "changesExplanation": "string",
        • "publishedAt": "2025-07-01T16:45:55.246Z",
        • "requiresAcknowledgment": true
        }
      }
    ],
  • "pagination": {
    • "cursor": "string"
    }
}
Accept User's Assigned Policy
🔒 Requires User Policies: Acknowledge User's Assigned Policy permission.


Securitybearer 
Request 
path Parameters
policyId
required
number
 
required
number or string
A Drata integer ID or an email address of the form 'email:value'.


 
Request Body schema: application/json
required
acceptedAt
required
string <date-time> 
When the user accepted the Policy. Must be within the last year.


 
details
string
Additional details on how and where the User acknowledged the Policy


 
Responses 
201
Created


400
Malformed data and/or validation errors


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


404
Not Found


409
There is a conflict in the business rules with this request


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


post/users/{userId}/assigned-policies/{policyId}/action-acknowledge
Request samples 
application/json
{
  • "acceptedAt": "2023-01-01T00:00:00.000Z",
  • "details": "Accepted in Confluence via plugin"
}
Response samples 
application/json
{
  • "id": 1,
  • "acceptedAt": "2025-07-01T16:45:55.246Z",
  • "createdAt": "2025-07-01T16:45:55.246Z",
  • "updatedAt": "2025-07-01T16:45:55.246Z",
  • "sourceType": "MY_DRATA",
  • "details": "string",
  • "policyId": 1,
  • "policyVersionId": 1,
  • "policy": {
    • "id": 1,
    • "name": "Acceptable Use Policy",
    • "description": "string",
    • "createdAt": "2025-07-01T16:45:55.246Z",
    • "updatedAt": "2025-07-01T16:45:55.246Z",
    • "assignedTo": "ALL",
    • "policyStatus": "ACTIVE",
    • "renewalDate": "2025-07-01T16:45:55.246Z"
    },
  • "policyVersion": {
    • "id": 1,
    • "version": 1,
    • "current": true,
    • "type": "UPLOADED",
    • "createdAt": "2025-07-01T16:45:55.246Z",
    • "updatedAt": "2025-07-01T16:45:55.246Z",
    • "renewalDate": "2025-07-01T16:45:55.246Z",
    • "subVersion": 1,
    • "description": "string",
    • "approvedAt": "2025-07-01T16:45:55.246Z",
    • "changesExplanation": "string",
    • "publishedAt": "2025-07-01T16:45:55.246Z",
    • "requiresAcknowledgment": true
    }
}