Webinar Recap: Best Practices to Create a Data Inventory and Meet GDPR Compliance

January 25, 2017

Yesterday we had Ray Everett, Principal Consultant (US), TRUSTe, Veronika Tonry, President, Privacy KnowHow, former Global Privacy Manager at Chevron and Applied Materials, and Guy Sereff, Corporate Counsel, Level 3 Communications share which tools and resources companies are using to conduct data inventories. Our speakers shared some of the biggest “lessons learned” from when they conducted Data Inventories for the first time, so that you can avoid them. There is no “one size fits all” approach – you should conduct these exercises in a way that fits with your company culture. Once you’ve received the support for the project, make … Continue reading Webinar Recap: Best Practices to Create a Data Inventory and Meet GDPR Compliance

EU General Data Protection Regulation (GDPR) Series; Implement – Data Mapping Analysis

January 05, 2017

For organizations that operate globally, complying with the EU GDPR will likely require significant investment in personnel, process change, and new tools.  In order to meet the compliance deadline, companies are actively preparing now. TRUSTe has developed a four phase process to help guide you on the path to compliance.  During November, December, and January we will provide you with a series of tips to use along your path to compliance. See Tip No. 4: Build Consensus for GDPR Compliance by executing an awareness campaign  TIP NO. 5: Uncover Risk by Conducting a Comprehensive Data Mapping Analysis  To ensure you have uncovered all … Continue reading EU General Data Protection Regulation (GDPR) Series; Implement – Data Mapping Analysis

Why you should know where your data is: two practical use cases

December 08, 2016

Why you should know where your data is: two practical use cases The General Data Protection Regulation (GDPR) includes a wide range of privacy related requirements which will impact all areas of a company, including legal, compliance, information security, marketing, engineering, and HR. These changes will require companies to have a clear understanding of where their data is in order to ensure GDPR compliance. Use Case 1: A data subject requests a copy of their data. GDPR Requirement Article 15 grants data subjects the right of access giving individuals a right to obtain confirmation as to whether personal data is … Continue reading Why you should know where your data is: two practical use cases

Majority of Companies Actively Preparing for EU GDPR

November 10, 2016

A new benchmarking study by IAPP & TRUSTe is available: Preparing for the GDPR: DPOs, PIAs, and Data Mapping. Contrary to many mainstream media reports that indicate a lack of GDPR awareness, more than 90% of organizations have begun preparing for GDPR compliance. Key Takeaways Over 90% of survey respondents have at least begun preparations for GDPR compliance. EU companies are further along the compliance path with 67% reporting their implementation is underway or completed vs. 42% for the US. 43% of companies report they already conduct data inventory and mapping projects, and another 30% are planning to do so … Continue reading Majority of Companies Actively Preparing for EU GDPR