K Royal, CIPP/US, CIPP/E, Sr. Privacy Consultant Companies need a privacy partner, not just a privacy consultant. This is a concept that I have learned with our clients while being a part of the consulting team at TRUSTe. Having been a privacy officer (both as an attorney and a non-attorney) in several industries – healthcare, medical devices, emerging technology and with clients ranging from local government to national, from financial to education in the global realm and specifically within the US sectors – I cannot say that I have seen it all, but I have seen a whole lot of … Continue reading Why Companies Need a Privacy Partner
With more than 1,000 companies now using TRUSTe Assessment Manager to assess and manage privacy compliance risk, TRUSTe announced today that version 3.0 of the award-winning solution is now available. The Assessment Manager 3.0 release introduces a host of new features including support for TRUSTe managed assessments, increased collaboration, enhanced reporting, an expanded privacy template library, and streamlined project workflow. The new features enable businesses of all sizes and privacy maturity to address emerging privacy challenges including Privacy Shield, the General Data Protection Regulation (GDPR), and vendor risk. Marcus Morissette, eBay Global Privacy Officer and Privacy Counsel said: “eBay is dedicated to meeting … Continue reading TRUSTe Assessment Manager Passes 1,000 Company Milestone; Version 3.0 Released
As the privacy landscape gets increasingly complicated, you need constant access to key insights to stay on top. The Summer / Fall schedule for the Privacy Insight Series is a set of six live webinars featuring renowned speakers, and cutting edge research, tips, and tools. This program will continue to provide the perfect opportunity to gain insights from leading privacy practitioners on the key trends impacting data privacy management in 2016 and beyond. Each event is free to attend and will feature informative discussions, case studies and practical solutions to today’s tough privacy challenges. Check out the Summer / Fall … Continue reading NEW! Summer/Fall Privacy Insight Webinar Series
- April 9th, 9-10 a.m. PT
Preparing for the EU Data Protection Regulation Webinar
This fourth webinar in the Privacy Insight Series is titled, “Preparing for the EU Data Protection Regulation.” The webinar will cover key changes in the current draft of the General Data Protection Regulation, how those changes will impact businesses and steps businesses can take to have a plan in place in order to comply. Speakers include John Bowman, Senior Principal at Promontory and former lead negotiator for the UK on the regulation at the DAPIX working group in Brussels; Christian Wiese Svanberg, Attorney-at-Law, Plesner, former Danish Ministry of Justice; Josh Harris, Director of Policy at TRUSTe; and Steve Wright, Chief Privacy Officer at Unilever.
This post is part 4 of a 4 part series about Privacy Impact Assessments (PIAs).
Every day, Internet users around the globe generate nearly 2.5 quintillion bytes of data. That number will only grow as connected devices become more ubiquitous and our world becomes even more connected.
With all that data, companies need to ensure users’ information is protected. Taking this important step not only protects users and clients, but also helps to ensure companies mitigate risk and protect their reputations.
A PIA is a great way for companies to assess their privacy practices. The six-step process starts with high-level privacy questions, then steps 2 and 3 take a deeper dive into the intricate privacy practices and data flows of organizations to check for gaps that could lead to privacy problems.
This post is part 3 of a 4 part series about Privacy Impact Assessments (PIAs) that we will be posting weekly.
Privacy officers, executives and project managers all benefit from PIA insights to ensure the privacy practices at their organizations are ethical and safe.
There are a total of six steps when conducting a PIA. Our previous posts focused on the value of PIAs for organizations and the initial steps needed to conduct a PIA. The next steps focus on asking more detailed privacy questions and taking a deeper dive into a company’s privacy practices.
The second step of a PIA is to describe the information flows, also called data mapping.