GDPR Compliance Archives

72 Hours Notice: GDPR Incident Response Management – Webinar Recap

April 20, 2018

As part of the TrustArc Privacy Insight Series Webinars, Ashley Slavik, Senior Counsel & Data Protection Officer, Veeva Systems Inc. and K Royal, Consulting Director, TrustArc, discussed how companies can plan for and respond to a data breach in compliance with the GDPR. Ashley and K gave best practices, suggested tools, and tips for addressing GDPR Article 33 and Article 34. This blog post will give a brief summary; you can listen to the entire webinar and download the slides here. Before going into data breach requirement details, our speakers discussed the different notification requirements for Controllers and Processors and gave examples … Continue reading 72 Hours Notice: GDPR Incident Response Management – Webinar Recap →

TrustArc Announces GDPR Validation

April 18, 2018

While GDPR Articles 40-43 contain provisions outlining certification programs and codes of conduct that may be established in the future, companies are seeking efficient, independent ways to benchmark and report on their compliance efforts now. The TrustArc GDPR Validation is designed to meet that need. In a press release announcing the launch of GDPR Validation, Chris Babel, CEO of TrustArc, stated that “TrustArc is leveraging its decades of privacy certification leadership and experience to provide a GDPR validation solution that can help companies meet the needs of their customers, partners and other stakeholders — now and after the … Continue reading TrustArc Announces GDPR Validation →

Will Your Company Meet GDPR Requirements in a Sustainable Manner?

March 21, 2018

No matter where you are in your journey to GDPR compliance, how you meet the requirements is very important. With more than 200 pages and close to 100 different articles plus recitals, the EU GDPR introduces a broad range of privacy compliance requirements. Implementing your compliance roadmap after conducting a gap analysis will require implementing controls, measuring risk, and assigning tasks in a consistent, sustainable manner. While ad hoc processes and templates can create inconsistencies, using GDPR specific assessment templates will promote the consistency needed to meet the May 25th deadline and continue compliance beyond the deadline. To help companies … Continue reading Will Your Company Meet GDPR Requirements in a Sustainable Manner? →

Meet the TrustArc Privacy Experts Series – Janalyn Schreiber

March 13, 2018

Janalyn Schreiber Senior Privacy Consultant What drew you to privacy and how many years have you been in the privacy space? I’ve been working with clients to address privacy, security and data management concerns for more than 20 years, focusing not only on the legal and compliance drivers of data protection, but also on the ways organizations can use technology to achieve their goals. What I find so exciting about the space is the blend of policy, strategy and technology issues and opportunities. Sitting between the worlds of Legal/Compliance, and the Business Units and IT/Information Security, I get to play … Continue reading Meet the TrustArc Privacy Experts Series – Janalyn Schreiber →

How the GDPR will Affect Your Marketing Program

March 06, 2018

Our recent webinar “Marketing Under the GDPR” covered GDPR’s impact upon marketing activities. The webinar generated a lot of questions, and we are sharing five of them, along with answers prepared by TrustArc privacy experts. This blog post is intended as a general overview of the subject and cannot be regarded as legal advice. Consent and Marketing Under the GDPR Can my company capture consent in exchange for content? For example, collecting an email address to download a white paper or register for a webinar? Yes, but organizations must clearly state at the time of information collection what the specific … Continue reading How the GDPR will Affect Your Marketing Program →

TrustArc Sponsors the EU Cloud Code of Conduct in Support of GDPR Compliance

March 05, 2018

TrustArc is honored to join with Google Cloud and Cisco as new industry sponsors of the EU Cloud Code of Conduct (EU Cloud CoC) as members of its General Assembly, working together with founding members Alibaba Cloud, Fabasoft, IBM, Oracle, Salesforce and SAP. Article 40 of the GDPR recommends Codes of Conduct for applying GDPR in specific sectors and contexts, and as the May 25, 2018 GDPR compliance deadline approaches, companies depending on GDPR-compliant SaaS, PaaS and IaaS platforms will be able to rely on the EU Cloud Code of Conduct (EU Cloud CoC). In a press release announcing the … Continue reading TrustArc Sponsors the EU Cloud Code of Conduct in Support of GDPR Compliance →

TrustArc Blog

Subscribe to Blog