TrustArc Blog

The Path of Privacy – 2019 Privacy Predictions by TrustArc CEO Chris Babel

December 28, 2018

Privacy was ubiquitous in 2018. The General Data Protection Regulation (GDPR) deadline on May 25, 2018 came and went as companies scrambled to meet and maintain compliance under the new regulation.  Data protection had a strong presence in the media as large companies’ handling of user data was widely discussed and reviewed.  New privacy regulations were introduced – such as the California Consumer Privacy Act (CCPA) and Brazil’s General Data Protection Law (LGPD) – meaning more and more companies will fall under the scope of at least one enforceable privacy regulation. So what’s in store for privacy in 2019? TrustArc … Continue reading The Path of Privacy – 2019 Privacy Predictions by TrustArc CEO Chris Babel

TrustArc Partners with the Department of Commerce for Privacy Workshops

November 07, 2018

Due to the high demand of our Privacy Workshop Series last year, we have held the series again this year. In addition to our own privacy experts, we have joined forces with privacy experts from the Department of Commerce too! The topics include: EU GDPR, EU – US Privacy Shield Framework, and California Consumer Privacy Act (CCPA). Specifically, the speakers dive into: Data Mapping, Records of Processing, DPIA / PIA Management, International Data Transfer, Individual Rights / Data Subjects Access Rights Management, Consent Management, and Compliance Reporting. The workshops are designed to help businesses achieve, demonstrate, and manage ongoing compliance … Continue reading TrustArc Partners with the Department of Commerce for Privacy Workshops

How to Maintain a Data Inventory for GDPR Compliance – Tips from TrustArc Privacy Experts

August 22, 2018

Now that the GDPR has been in effect for a few months, it is a good time to evaluate your processes and procedures put in place prior to the deadline. Although May 25th has passed, companies still need to be compliant every day after. A fundamental key to staying compliant is introducing a regular review process. As a reminder, Article 30 requires companies to produce “records of processing activities”, which will allow regulators to see that companies are adhering to the GDPR. With this goal in mind, the records should show why and how the data is being processed. A … Continue reading How to Maintain a Data Inventory for GDPR Compliance – Tips from TrustArc Privacy Experts

Privacy Shield Program Continues to Demonstrate High Interest

August 09, 2018

The U.S. Department of Commerce recently issued a communication highlighting the growing industry interest in participating in both EU-U.S. and Swiss-U.S. Privacy Shield certification programs. There are currently over 3,300 organizations in the program and over 1,000 more who have submitted their first time certification applications in recent months – which will likely bring the number of participants to over 4,000. Dave Deasy, SVP Marketing at TrustArc, commented “we are continuing to see high interest in Privacy Shield from companies of all sizes to ensure they can demonstrate a high commitment to privacy for international data transfers.  This is consistent … Continue reading Privacy Shield Program Continues to Demonstrate High Interest

TrustArc GDPR Research, Part 4: Companies Feel GDPR Compliance Has Positive Impact on Their Business

July 20, 2018

In our prior blog posts in this series, we reported on our survey of 600 US, UK and other EU respondents that: 68% of the respondents have spent more than six figures already on GDPR compliance and that 67% expect to spend an additional six figures by the end of 2018 (July 13th blog) the top reason for becoming GDPR compliant was to meet customer expectations (July 16th blog) companies were most compliant with customer-facing GDPR issues such as cookie consent management and 87% of the respondents needed 3rd party help (July 19th blog) Despite the large GDPR compliance budgets … Continue reading TrustArc GDPR Research, Part 4: Companies Feel GDPR Compliance Has Positive Impact on Their Business

TrustArc GDPR Research, Part 3: Companies Are Most Compliant on Customer-Facing Issues, Such as Cookie Consent

July 19, 2018

In our July 16th blog post we reported on our survey of 600 US, UK and other EU respondents, advising that the companies cited meeting customer expectations as a more important motivation to becoming GDPR compliant than avoiding fines or lawsuits. In line with the goal of meeting customer expectations, respondents reported being most compliant with updating policies and procedures (27%) and cookie consent management (25%) and furthest behind with respect to international data transfer mechanisms (16%) and vendor risk management (13%). The overwhelming majority (87%) of respondents needed 3rd party help with their GDPR projects – the most external help needed … Continue reading TrustArc GDPR Research, Part 3: Companies Are Most Compliant on Customer-Facing Issues, Such as Cookie Consent