TrustArc Blog

TrustArc Privacy and GDPR Compliance Research Report – Part 1 of 3

June 20, 2017

This blog series will cover the results of a new privacy survey conducted in May of 2017 as part of the closing session at the TrustArc Privacy Risk Summit, held at the Bespoke Conference Center in San Francisco June 6, 2017. The survey, conducted by Dimensional Research on behalf of TrustArc, focused on the status of U.S. private sector efforts to meet privacy mandates in general and in particular to meet the May 25, 2018 deadline for the EU General Data Privacy Regulation (GDPR). The results will be shared in a three-part blog post series: Part 1: General Privacy Market Results Part 2: GDPR … Continue reading TrustArc Privacy and GDPR Compliance Research Report – Part 1 of 3

TrustArc Speaks at DAA Summit 2017

June 14, 2017

The Digital Advertising Alliance Summit is the DAA event that brings together all stakeholders for effective self-regulation in relevant ad content and messaging based on responsible data collection. This year is the DAA’s fifth Summit; the theme for this year’s event is “Furthering Consumer Trust Through Dynamic Self-Regulation.”  Today TrustArc’s Darren Abernethy, esq., CIPT/E/M/US joined Peter Kosmala from 4A’s, Erin Brinza from Ziff Davis, Faiza Javaid from Dentsu Aegis Network, Jason Koye from Annalect, and Noga Rosenthal from Epsilon on a panel “Is the IBA Ecosystem Ready for the GDPR?”. With the GDPR compliance deadline on the horizon, no industry or company with EU … Continue reading TrustArc Speaks at DAA Summit 2017


June 01, 2017

Come listen to industry experts and in-house privacy officers on how best to prepare. Please join us on June 5, 2017 for a seminar and discussion on major EU privacy developments impacting US businesses in the upcoming year. The forthcoming EU General Data Protection Regulation (GDPR) is the most sweeping change to the data protection landscape in the past 20 years and will become effective in just a year’s time. GDPR is not just the next incremental change to data privacy regulations. Rather, its impact will be felt by every organization that does business in the EU or handles personal information of EU citizens in … Continue reading ARE YOU READY FOR GDPR?

The GDPR is Coming: 3 Things for DPOs to Consider About Privacy Awareness

May 31, 2017

by Tom Pendergast Many of the impacts of the EU’s wide-reaching General Data Protection Regulation (GDPR) are still being hemmed and hawed about, but one thing is clear: more Data Protection Officers will be needed. The IAPP estimated last year that an estimated 28,000 new DPOs will be needed to oversee data handling for organizations subject to the GDPR. The mandatory DPO is one of many provisions within the GDPR going into effect in May 2018. (Check out our white paper here for a primer and some industry expert input). While the requirements for getting in compliance with the GDPR are … Continue reading The GDPR is Coming: 3 Things for DPOs to Consider About Privacy Awareness

1 Year Until EU GDPR Enforcement Begins

May 25, 2017

EU General Data Protection Regulation (GDPR) The EU GDPR is a law designed to enhance data protection for EU residents and provide a consolidated framework to guide business usage of personal data across the EU, replacing the patchwork of existing regulations and frameworks. The 200-plus page GDPR replaces the 20 year old Directive (95/46/EC). This new law has received a lot of attention due to its complexity  and the associated penalties for noncompliance. Fines can be up to 20,000,000 EUR or 4% of total worldwide annual turnover of the preceding year (whichever is higher). As a result, many organizations are … Continue reading 1 Year Until EU GDPR Enforcement Begins

What you Need to Know About the GDPR: Practical Steps to Address GDPR Compliance

May 09, 2017

While some organizations have written about the impending GDPR deadline and potential fines, or re-printed an exact copy of the text itself, TRUSTe has taken the 200+ pages of the GDPR and translated it into practical implementation steps for an organization of any size or maturity. The implementation steps are grouped into five actionable phases: Building a Program and Team Assessing Risks and Creating Awareness Designing and Implementing Operational Controls Managing and Enhancing Controls Demonstrating Ongoing Compliance A sample implementation step is developing a DPIA program, which includes creating templates, conducting DPIAs, managing remediation, and providing compliance reports. The guide also … Continue reading What you Need to Know About the GDPR: Practical Steps to Address GDPR Compliance