TrustArc Blog

Four Boxes You Must Have Checked Before You Leverage Legitimate Interests as Your Basis for Data Processing

September 18, 2019

Four Boxes You Must Have Checked Before You Leverage Legitimate Interests as Your Basis for Data Processing

The GDPR, Brazil LGPD, Thailand PDPA, and many other privacy regulations around the globe require that organizations determine the legal basis for processing individuals’ data (customers, employees, etc.) as part of their business operations.  For example, Article 6 of the GDPR states that processing shall be lawful only if at least one of the following applies: data subject consent has been obtained; processing is necessary for performance of a contract; processing is necessary for compliance with a legal obligation, to protect someone’s life or to perform a task in the public interest; or the processing is necessary for your legitimate … Continue reading Four Boxes You Must Have Checked Before You Leverage Legitimate Interests as Your Basis for Data Processing

Upcoming Webinar – Leveraging the Power of Automated Intelligence for Privacy Management

September 17, 2019

Upcoming Webinar – Leveraging the Power of Automated Intelligence for Privacy Management

TrustArc is proud to present the next Privacy Insight Series webinar “Leveraging the Power of Automated Intelligence for Privacy Management” with CryptoNumerics VP of Sales Ravi Pather and TrustArc SVP Privacy Intelligence and General Counsel Hilary Wandall. This webinar will take place on Thursday, September 26th at 9am PT / 12pm ET / 4pm GMT. Don’t miss this opportunity to learn more about using automation to simplify privacy program management – register today! With the increasing prevalence of privacy technology, how can the privacy industry leverage the benefits of artificial intelligence and machine learning to drive efficiencies in privacy program … Continue reading Upcoming Webinar – Leveraging the Power of Automated Intelligence for Privacy Management

Cisco Boosts Trust with Industry-Leading APEC PRP Certification

September 13, 2019

Cisco Boosts Trust with Industry-Leading APEC PRP Certification

By Harvey Jang, Chief Privacy Officer & Counsel, Cisco Cisco is now certified under the new Asia-Pacific Economic Cooperation (APEC) Privacy Recognition for Processors (PRP) System. Cisco has been an active supporter of the APEC Cross Border Privacy Rules system (CBPRs) and an advocate for safe and secure global data flows. We are an early adopter and the eighth company to be PRP certified. The APEC Cross Border Privacy Rules (CBPR) and PRP systems are voluntary, enforceable (and independently verified) privacy certifications built upon the 9 Principles of the APEC Privacy Framework endorsed by the 21 APEC Member Economies (see www.cbprs.org). The CBPRs focus … Continue reading Cisco Boosts Trust with Industry-Leading APEC PRP Certification

The Careful Planning Required to Meet and Maintain GDPR Compliance – Tips and Tools for your GDPR RFP

September 10, 2019

The Careful Planning Required to Meet and Maintain GDPR Compliance – Tips and Tools for your GDPR RFP

The EU GDPR went into effect on May 25, 2018 and is a law designed to enhance data protection for EU residents and provide a consolidated framework to guide business usage of personal data across the EU, replacing the patchwork of existing regulations and frameworks. The reach of the GDPR extends beyond the Directive it replaced. The GDPR comes with significant penalties for non-compliance – fines up to 20,000,000 EUR or 4% of total worldwide annual turnover of the preceding year (whichever is higher). Aside from financial penalties, many businesses require their vendors to be fully compliant with the GDPR … Continue reading The Careful Planning Required to Meet and Maintain GDPR Compliance – Tips and Tools for your GDPR RFP

September Event Spotlight

September 05, 2019

September Event Spotlight

TrustArc regularly attends and hosts events around the world and online – please visit us at one or more of the following events. ________________________________________________________________ CCPA & Privacy Summit, presented by Intel®, Microsoft, IntraEdge, Truyo, TrustArc, and DLA Piper September Houston, Dallas, Costa Mesa, and Palo Alto  An intimate series of forums to discuss the impact of the new privacy regulations and get expert help on how to operationalize your compliance. > Request a seat by emailing Mary Anne Timothy here ________________________________________________________________ IAPP Data Protection Intensive: Deutschland 2019 September 18 – September 19 Munich Attendees will explore how to manage a … Continue reading September Event Spotlight

Nevada’s Privacy Law: Step-by-Step Suggestions to Support Compliance with SB 220

September 04, 2019

Nevada’s Privacy Law: Step-by-Step Suggestions to Support Compliance with SB 220

While all eyes have been on complying with the California Consumer Privacy Act (CCPA) by Jan. 1, 2020, the new Nevada privacy law, Senate Bill 220 (SB 220) will actually take effect three months earlier on Oct. 1, 2019.  SB 220 was signed into law by the governor of Nevada on May 29, 2019 and amends the state’s existing privacy law, Nevada Revised State 603A (enacted in 2017), for owners and operators of websites or online commercial providers. The law grants consumers who live in Nevada the right to opt-out of the sale of their personal information and to direct … Continue reading Nevada’s Privacy Law: Step-by-Step Suggestions to Support Compliance with SB 220