TrustArc Blog

TrustArc Privacy and GDPR Compliance Research Report– Part 3 of 3

July 05, 2017

The results of the TrustArc / Dimensional research report on the status of U.S. Privacy and GDPR Compliance Programs will be shared in a three-part blog post series: To review Part 1, the General Privacy Market Results, click here To review Part 2: GDPR Compliance Results, click here Part 3: Privacy Program Implementation Results Companies report needing help in a wide range of areas, topped by GDPR planning, international data transfer, compliance reporting, conducting PIAs / DPIAs, and data inventory. Many GDPR implementation plans begin with conducting a data inventory; however, companies face three common challenges when it comes to data … Continue reading TrustArc Privacy and GDPR Compliance Research Report– Part 3 of 3

TrustArc Privacy and GDPR Compliance Research Report– Part 2 of 3

June 28, 2017

Part 2 of our three part series reviews results from the TrustArc / Dimensional research report on the status of U.S. Privacy and GDPR Compliance Programs. To review Part 1, the General Privacy Market Results, click here Part 3 will include Privacy Program Implementation Results. In Part 2 of this series, we will share the GDPR Compliance Results. For all companies responding, approximately 40% are still designing their GDPR plan and only about 10% have GDPR plans well underway. Many companies have a significant amount of GDPR implementation ahead of them. Responding companies have set aside relatively large budgets for … Continue reading TrustArc Privacy and GDPR Compliance Research Report– Part 2 of 3

TrustArc Privacy and GDPR Compliance Research Report – Part 1 of 3

June 20, 2017

This blog series will cover the results of a new privacy survey conducted in May of 2017 as part of the closing session at the TrustArc Privacy Risk Summit, held at the Bespoke Conference Center in San Francisco June 6, 2017. The survey, conducted by Dimensional Research on behalf of TrustArc, focused on the status of U.S. private sector efforts to meet privacy mandates in general and in particular to meet the May 25, 2018 deadline for the EU General Data Privacy Regulation (GDPR). The results will be shared in a three-part blog post series: Part 1: General Privacy Market Results Part 2: GDPR … Continue reading TrustArc Privacy and GDPR Compliance Research Report – Part 1 of 3

TrustArc Speaks at DAA Summit 2017

June 14, 2017

The Digital Advertising Alliance Summit is the DAA event that brings together all stakeholders for effective self-regulation in relevant ad content and messaging based on responsible data collection. This year is the DAA’s fifth Summit; the theme for this year’s event is “Furthering Consumer Trust Through Dynamic Self-Regulation.”  Today TrustArc’s Darren Abernethy, esq., CIPT/E/M/US joined Peter Kosmala from 4A’s, Erin Brinza from Ziff Davis, Faiza Javaid from Dentsu Aegis Network, Jason Koye from Annalect, and Noga Rosenthal from Epsilon on a panel “Is the IBA Ecosystem Ready for the GDPR?”. With the GDPR compliance deadline on the horizon, no industry or company with EU … Continue reading TrustArc Speaks at DAA Summit 2017

1 Year Until EU GDPR Enforcement Begins

May 25, 2017

EU General Data Protection Regulation (GDPR)

EU General Data Protection Regulation (GDPR) The EU GDPR is a law designed to enhance data protection for EU residents and provide a consolidated framework to guide business usage of personal data across the EU, replacing the patchwork of existing regulations and frameworks. The 200-plus page GDPR replaces the 20 year old Directive (95/46/EC). This new law has received a lot of attention due to its complexity  and the associated penalties for noncompliance. Fines can be up to 20,000,000 EUR or 4% of total worldwide annual turnover of the preceding year (whichever is higher). As a result, many organizations are … Continue reading 1 Year Until EU GDPR Enforcement Begins

What you Need to Know About the GDPR: Practical Steps to Address GDPR Compliance

May 09, 2017

While some organizations have written about the impending GDPR deadline and potential fines, or re-printed an exact copy of the text itself, TRUSTe has taken the 200+ pages of the GDPR and translated it into practical implementation steps for an organization of any size or maturity. The implementation steps are grouped into five actionable phases: Building a Program and Team Assessing Risks and Creating Awareness Designing and Implementing Operational Controls Managing and Enhancing Controls Demonstrating Ongoing Compliance A sample implementation step is developing a DPIA program, which includes creating templates, conducting DPIAs, managing remediation, and providing compliance reports. The guide also … Continue reading What you Need to Know About the GDPR: Practical Steps to Address GDPR Compliance