Top Topics of 2016

December 30, 2016

We would like to thank all of our blog subscribers and visitors for a great 2016. This year has had many monumental privacy events, from the EU General Data Protection Regulation (GDPR) being adopted to EU-US Privacy Shield being finalized. TRUSTe was there as your trusted privacy advisor throughout the changes, and here are the top three blog posts of the year: 1. EU GDPR Series: Tips on Privacy Compliance This series gives the background on the EU GDPR, the path to compliance, and practical implementation steps for each phase of your program. Each individual post contains best practices, tips, and … Continue reading Top Topics of 2016

Why Companies Need a Privacy Partner

November 28, 2016

K Royal, CIPP/US, CIPP/E, Sr. Privacy Consultant Companies need a privacy partner, not just a privacy consultant. This is a concept that I have learned with our clients while being a part of the consulting team at TRUSTe. Having been a privacy officer (both as an attorney and a non-attorney) in several industries – healthcare, medical devices, emerging technology and with clients ranging from local government to national, from financial to education in the global realm and specifically within the US sectors – I cannot say that I have seen it all, but I have seen a whole lot of … Continue reading Why Companies Need a Privacy Partner

500th Company Posted to Privacy Shield Framework

October 21, 2016

The International Trade Administration (ITA) announced that the 500th company was posted to the EU-US Privacy Shield Framework list on Tuesday, October 18th. It’s a tremendous accomplishment, and there are still more to come. More than 1,500 companies have submitted self-certifications, providing strong endorsement of the new framework. The ITA press release stated: WASHINGTON – The EU-U.S. Privacy Shield Framework today achieved a milestone with the posting of the 500th company to the Framework list since it began accepting certifications on August 1, 2016. The U.S. Department of Commerce’s International Trade Administration manages the newly created Privacy Shield program, and conducts a … Continue reading 500th Company Posted to Privacy Shield Framework

3 More Misconceptions about Privacy Shield

October 10, 2016

  Last week we gave you the facts to dispel three common misconceptions about Privacy Shield. This week we are including three more. 1. Model Contractual Clauses (MCCs) & Standard Contractual Clauses (SCCs) are easier than certifying for Privacy Shield. While your company may have invested in MCCs or SCCs when Safe Harbor was nullified, your work does not stop there.  You need to continue updating your contracts on an ongoing basis to ensure continuing compliance.  Sabina Jausovec Salinas, Corporate Counsel at Rackspace and Debbie Bromson, Head of Global Privacy at Jazz Pharmaceuticals spoke about why they chose Privacy Shield for their organizations; … Continue reading 3 More Misconceptions about Privacy Shield

3 Misconceptions about Privacy Shield

October 06, 2016

Here are 3 Misconceptions about Privacy Shield and the facts you should know. 1. I missed the deadline to certify for Privacy Shield. Although the deadline to qualify for the onward transfer requirements grace period ended September 30th, it is not too late to certify. While there is no deadline to self-certify, if you have clients and/or employees in Europe, you will need to make use of one of the recognized transfer mechanisms to process that data outside of Europe. In addition to these regulatory obligations, your company may start to face pressure from clients or business partners to get the … Continue reading 3 Misconceptions about Privacy Shield

Ten Reasons to Implement the EU-U.S. Privacy Shield

August 15, 2016

Hilary Wandall, General Counsel & Chief Data Governance Officer at TRUSTe summarizes the top 10 reasons to implement the new EU-U.S. Privacy Shield even if you’ve implemented or have been working on implementing Model Contractual Clauses (MCCs). At TRUSTe, we have nearly 20 years of experience working with thousands of companies to assess their privacy practices, and with many others to verify their compliance with regulatory frameworks like APEC CBPR system and the former U.S.-EU Safe Harbor. This work has taught us that there are a number of legal, compliance and business benefits to implementing comprehensive privacy programs to manage international data … Continue reading Ten Reasons to Implement the EU-U.S. Privacy Shield