TrustArc Blog

IAPP & TrustArc Research: Part II – Privacy Tech Adoption Approaching the Tipping Point

July 25, 2018

Part I of this blog post series discussed the background, goals, and research methodology of the research report: How Privacy Tech is Bought and Deployed.

This blog post, Part II, will illustrate how Privacy Tech Adoption has reached the tipping point. Based on purchase plans, it is projected that companies will adopt privacy technology in eight of the ten privacy technology categories.

This chart shows the percentages of companies surveyed that have already purchased and implemented privacy technology:

Of the 10 categories of privacy technology, it’s no surprise that Network Activity Monitoring technology is the most in-use, being that the infosecurity marketplace and its range of solutions is mature and robust. Core security technologies that might also serve a privacy function are more frequently implemented, as is the case for many of what we call Enterprise Privacy Management solutions.

Privacy Program Assessment and Management software has made significant headway, considering it was essentially unknown as a product as recently as five years ago. Even more indicative of Privacy Assessment/Management’s nascent status is that yet another 32 percent of organizations are either planning to purchase this technology in the future or have already purchased it (11 percent) but have yet to implement.

This chart shows the percentages of companies surveyed that are planning to purchase, or have purchased but not implemented privacy technology:

Both the Data Mapping and Flow and Personal Data Discovery categories have either already been purchased or are in the plans for another 33 percent of organizations, which shows how in-demand these solutions are as the GDPR and other laws require a deep knowledge of what personal information and organization holds, where it lives, and how it travels through an organization.

This chart shows the percentages of companies surveyed that have already purchased, or plan to purchase privacy technology:

The data shows that technologies with security applications and general enterprise use are clearly more mature and in-use than newer, privacy office-specific technologies, but the data shows a clear wave of uptake coming. The most likely new technologies to be adopted by privacy offices are Data Mapping and Flow, Personal Data Discovery, and Privacy Program Assessment/Management technologies, all of which are in the plans for purchase by roughly a quarter of companies.

In our next blog post we will discuss the three fastest growing solutions. To read the entire report now, click here.