An influx of personal data collected by businesses puts businesses in a vulnerable situation. Lack of proper management of this data could result in fines if businesses are not measuring risk and establishing controls to mitigate potential risk. Furthermore, customers demand that their personal data be respected and managed with care. That’s why TrustArc built the Risk Profile. Powered by the TrustArc Intelligence Engine, the Risk Profile automatically scores inherent and residual risk of various business activities. Privacy managers and business unit leaders can now access the risk information they need to know, when they need it, and in the … Continue reading New Tool Determines Risk and Remediation Plans Across your Business
We announced our newest partnership with Alibaba Cloud (the cloud computing arm of Alibaba Group) at the IAPP Asia Privacy Forum 2017. As data privacy increases in importance for organizations of all sizes and maturity in Asia, TrustArc saw an opportunity to partner with one of the fastest-growing cloud computing companies in the world. Both TrustArc and Alibaba Cloud believe that as organizations continue to provide excellent experiences for their customers by collecting personal data, keeping up with evolving regulations and protecting data privacy is key. Scaling a privacy program requires using a combination of privacy expertise and technology. This strategic … Continue reading TrustArc Partners with Alibaba Cloud
Director of Policy, TRUSTe
According to the UK ICO’s latest report into cookie compliance they have received only 550 complaints, compared with 53,000 about unwanted marketing communications. TRUSTe’s analysis of the impact of the directive revealed that the majority of users were choosing to accept advertising cookies.
So, after a year of intense discussion and compliance headaches for EU companies, what will be the lasting legacy of this legislation?
I recently asked David Smith, the Deputy Commissioner at the ICO that very question. He responded:
“One of the legacies [for the EU Cookie Directive] is actually for businesses to begin to think before they adopt new technologies, or other new developments, and make sure they’re privacy friendly.
Because actually if you turn the clock back to long before the Directive, leaving cookies on someone’s property without consent or even notice appears quite wrong. You’re putting some piece of text on my system, my device, which identifies me to you. And you’re doing it without even telling me, let alone getting my consent. That doesn’t feel right even though it had become common practice. So, the idea that you should have consent for cookies is actually correct. It’s just a challenge trying to sort of retrofit and rectify the status quo.” Read more “The Legacy of the Cookie Directive”