No matter where you are in your journey to GDPR compliance, how you meet the requirements is very important. With more than 200 pages and close to 100 different articles plus recitals, the EU GDPR introduces a broad range of privacy compliance requirements. Implementing your compliance roadmap after conducting a gap analysis will require implementing controls, measuring risk, and assigning tasks in a consistent, sustainable manner. While ad hoc processes and templates can create inconsistencies, using GDPR specific assessment templates will promote the consistency needed to meet the May 25th deadline and continue compliance beyond the deadline. To help companies … Continue reading Will Your Company Meet GDPR Requirements in a Sustainable Manner?
Janalyn Schreiber Senior Privacy Consultant What drew you to privacy and how many years have you been in the privacy space? I’ve been working with clients to address privacy, security and data management concerns for more than 20 years, focusing not only on the legal and compliance drivers of data protection, but also on the ways organizations can use technology to achieve their goals. What I find so exciting about the space is the blend of policy, strategy and technology issues and opportunities. Sitting between the worlds of Legal/Compliance, and the Business Units and IT/Information Security, I get to play … Continue reading Meet the TrustArc Privacy Experts Series – Janalyn Schreiber
Our recent webinar “Marketing Under the GDPR” covered GDPR’s impact upon marketing activities. The webinar generated a lot of questions, and we are sharing five of them, along with answers prepared by TrustArc privacy experts. This blog post is intended as a general overview of the subject and cannot be regarded as legal advice. Consent and Marketing Under the GDPR Can my company capture consent in exchange for content? For example, collecting an email address to download a white paper or register for a webinar? Yes, but organizations must clearly state at the time of information collection what the specific … Continue reading How the GDPR will Affect Your Marketing Program
TrustArc is honored to join with Google Cloud and Cisco as new industry sponsors of the EU Cloud Code of Conduct (EU Cloud CoC) as members of its General Assembly, working together with founding members Alibaba Cloud, Fabasoft, IBM, Oracle, Salesforce and SAP. Article 40 of the GDPR recommends Codes of Conduct for applying GDPR in specific sectors and contexts, and as the May 25, 2018 GDPR compliance deadline approaches, companies depending on GDPR-compliant SaaS, PaaS and IaaS platforms will be able to rely on the EU Cloud Code of Conduct (EU Cloud CoC). In a press release announcing the … Continue reading TrustArc Sponsors the EU Cloud Code of Conduct in Support of GDPR Compliance
TrustArc GDPR Privacy Workshop March Boston, New York, Chicago & Washington DC The GDPR Privacy Workshops are free events that feature informative guidance, peer discussions and practical solutions to achieve GDPR compliance. Topics discussed will include Data Mapping, Records of Processing Activities, Article 30 Reports, DPIAs / PIAs, Article 35 Reports, Individual Rights Management, GDPR HR Data Considerations, and GDPR Technology Solution & Tool Demonstrations. > Reserve your seat to a March GDPR Privacy Workshop today _____________________________________________________________________________________ Appointing and Supporting the DPO role. What Tools do you Need? March 14 @ 9AM PT / 12PM ET / 5PM GMT Online Webinar One … Continue reading March Event Spotlight: APEC CBPR, IAPP Global Privacy Summit, Privacy Insight Series, GDPR Privacy Workshops
As the GDPR deadline approaches, your company should be ready for one of the most public facing requirements – Individual Rights Management. GDPR Chapter III, “Rights of the Data Subject” outline the requirements. Article 12 through Article 23 cover areas such as Article 17 – Right to erasure (‘right to be forgotten’), which has been the hot topic of discussion. Questions such as “what if my company doesn’t have the technology to read that data anymore” have left privacy teams stumped. The privacy team can get started in answering this question by following the steps below: Ensure fundamental understanding … Continue reading Individual Rights Management – How Will You Meet GDPR Requirements?