TrustArc Blog

How to Maintain a Data Inventory for GDPR Compliance – Tips from TrustArc Privacy Experts

August 22, 2018

Now that the GDPR has been in effect for a few months, it is a good time to evaluate your processes and procedures put in place prior to the deadline. Although May 25th has passed, companies still need to be compliant every day after. A fundamental key to staying compliant is introducing a regular review process. As a reminder, Article 30 requires companies to produce “records of processing activities”, which will allow regulators to see that companies are adhering to the GDPR. With this goal in mind, the records should show why and how the data is being processed. A … Continue reading How to Maintain a Data Inventory for GDPR Compliance – Tips from TrustArc Privacy Experts

Privacy Shield Program Continues to Demonstrate High Interest

August 09, 2018

The U.S. Department of Commerce recently issued a communication highlighting the growing industry interest in participating in both EU-U.S. and Swiss-U.S. Privacy Shield certification programs. There are currently over 3,300 organizations in the program and over 1,000 more who have submitted their first time certification applications in recent months – which will likely bring the number of participants to over 4,000. Dave Deasy, SVP Marketing at TrustArc, commented “we are continuing to see high interest in Privacy Shield from companies of all sizes to ensure they can demonstrate a high commitment to privacy for international data transfers.  This is consistent … Continue reading Privacy Shield Program Continues to Demonstrate High Interest

TrustArc GDPR Research, Part 4: Companies Feel GDPR Compliance Has Positive Impact on Their Business

July 20, 2018

In our prior blog posts in this series, we reported on our survey of 600 US, UK and other EU respondents that: 68% of the respondents have spent more than six figures already on GDPR compliance and that 67% expect to spend an additional six figures by the end of 2018 (July 13th blog) the top reason for becoming GDPR compliant was to meet customer expectations (July 16th blog) companies were most compliant with customer-facing GDPR issues such as cookie consent management and 87% of the respondents needed 3rd party help (July 19th blog) Despite the large GDPR compliance budgets … Continue reading TrustArc GDPR Research, Part 4: Companies Feel GDPR Compliance Has Positive Impact on Their Business

TrustArc GDPR Research, Part 3: Companies Are Most Compliant on Customer-Facing Issues, Such as Cookie Consent

July 19, 2018

In our July 16th blog post we reported on our survey of 600 US, UK and other EU respondents, advising that the companies cited meeting customer expectations as a more important motivation to becoming GDPR compliant than avoiding fines or lawsuits. In line with the goal of meeting customer expectations, respondents reported being most compliant with updating policies and procedures (27%) and cookie consent management (25%) and furthest behind with respect to international data transfer mechanisms (16%) and vendor risk management (13%). The overwhelming majority (87%) of respondents needed 3rd party help with their GDPR projects – the most external help needed … Continue reading TrustArc GDPR Research, Part 3: Companies Are Most Compliant on Customer-Facing Issues, Such as Cookie Consent

TrustArc GDPR Research, Part 2: Top Reason for Investing in GDPR Compliance Was Meeting Customer Expectations

July 16, 2018

In our July 12th blog post we shared the compliance status of 600 US, UK and other EU respondents. We also reported that 68% of the respondents have spent more than six figures already on GDPR compliance and that 67% expect to spend an additional six figures by the end of 2018. The research showed us that becoming GDPR compliant is an expensive endeavor. But did the 600 companies surveyed devote those large GDPR budgets due to the fear of heavy GDPR regulatory fines and litigation costs?  Key findings from the research show that not to be the case. For the US, … Continue reading TrustArc GDPR Research, Part 2: Top Reason for Investing in GDPR Compliance Was Meeting Customer Expectations

TrustArc GDPR Research: 74% of Companies Expect to be GDPR Compliant by the End of 2018

July 13, 2018

The May 25, 2018 EU General Data Protection Regulation (GDPR) compliance deadline has passed and the question on everyone’s minds is – how did we do? To help answer that question, TrustArc surveyed 600 IT and legal professionals in the U.S., UK and EU companies one month after the May 25 deadline. For all respondents, privacy represented at least 25% of their job.  The participating companies included a mix of small, mid-sized and large companies, from all major industry sectors, including technology, manufacturing, retail and financial services. In a press release announcing the release of the research report, Chris Babel, … Continue reading TrustArc GDPR Research: 74% of Companies Expect to be GDPR Compliant by the End of 2018