TrustArc Blog

Meet the TrustArc Privacy Experts Series – K Royal

September 28, 2017

K Royal, JD, FIP, CIPP/E/US, CIPM Senior Privacy Consultant In this blog series you will get to know several of our privacy experts from our global consulting team. Each team member brings different experience and expertise, so be sure to read each of their tips and advice! What drew you to privacy and how many years have you been in the privacy space? I fell into privacy by accident, but quickly realized that I am a square peg in a square hole. However, in thinking back over my career, in my early 20s, I identified and designed a patient admissions process … Continue reading Meet the TrustArc Privacy Experts Series – K Royal

Privacy Insight Series Webinar Highlights GDPR Benchmarking Research

July 31, 2017

The European Union’s (EU) General Data Protection Regulation (GDPR) is the most sweeping change to data protection in the past 20 years, and will go into effect in less than a year. Its impact will be felt by every organization that does business in the EU, or handles personal information of EU citizens in any manner. We benchmarked the status of 200 U.S. companies’ efforts to meet privacy mandates in general, and in particular to meet the May 25, 2018 deadline for the GDPR. The survey was conducted by Dimensional Research on behalf of TrustArc. On July 26, as the … Continue reading Privacy Insight Series Webinar Highlights GDPR Benchmarking Research

What you Need to Know About the GDPR: Practical Steps to Address GDPR Compliance

May 09, 2017

While some organizations have written about the impending GDPR deadline and potential fines, or re-printed an exact copy of the text itself, TRUSTe has taken the 200+ pages of the GDPR and translated it into practical implementation steps for an organization of any size or maturity. The implementation steps are grouped into five actionable phases: Building a Program and Team Assessing Risks and Creating Awareness Designing and Implementing Operational Controls Managing and Enhancing Controls Demonstrating Ongoing Compliance A sample implementation step is developing a DPIA program, which includes creating templates, conducting DPIAs, managing remediation, and providing compliance reports. The guide also … Continue reading What you Need to Know About the GDPR: Practical Steps to Address GDPR Compliance

Privacy Program Management: A Framework for Success Webinar Recap

April 03, 2017

TRUSTe General Counsel and Chief Data Governance Officer Hilary Wandall gave a webinar where she discussed how to support each phase of building a privacy program by using a clear framework, standards, and operational controls. The discussion also included tips on how to make accountability effective in an organization, and what accountability looks like in practice. If you missed it, click HERE to listen to the entire webinar on demand. One of the topics covered was how to get started. To get started with a privacy program, first you have to decide upon a model. Some important considerations are: What … Continue reading Privacy Program Management: A Framework for Success Webinar Recap

Important Privacy Shield Requirements for Pharma & Medical Companies

March 28, 2017

By Emily S. Yu, Privacy Solutions Manager, TRUSTe The EU-US Privacy Shield framework is an approved transfer mechanism for personal data from the EU to the United States, meaning that once self-certified, companies have “adequate” protections in place when transferring personal data. Businesses involved in clinical, medical and other forms of scientific research may not be aware that there are specific requirements under Privacy Shield that apply to those fields. The requirements may create the need for additional privacy policy controls, so companies in those fields should check to ensure that all requirements are being met. These requirements are addressed in … Continue reading Important Privacy Shield Requirements for Pharma & Medical Companies

3 Ways to Leverage Your Privacy Shield Certification

March 02, 2017

EU US Privacy Shield

Last week TRUSTe held a webinar “Privacy Shield Self-Certification – What’s Next?” as part of its Privacy Insight Series. If you missed the webinar you can still sign up to receive the on-demand recording and the slides. Our speakers, David Fowler, Chief Privacy & Digital Compliance Officer, Act-On Software; Amanda Gratchner, Global Privacy Counsel, NAVEX Global; and K Royal, Senior Privacy Consultant at TRUSTe discussed several different ways to enhance everything from your policies to your Privacy Impact Assessments by leveraging your Privacy Shield Certification. They also discussed how to use the Certification toward compliance with other frameworks, such as the … Continue reading 3 Ways to Leverage Your Privacy Shield Certification

Subscribe to Blog