Privacy Ref Blog

Automation for Privacy

Since GDPR was introduced there’s been an upsurge in the number of tools that are available to help you manage your privacy environment. Over the past several weeks our clients have been taking a closer look at some of these. but often they find that the number tools out there that claim to be supportive of GDPR, and many of them are, to be little confusing. While providing this support, many don’t necessarily match what our clients are looking for. So we provided a way to categorize the tools to make it easier our clients understand the privacy tools landscape.

Categories of tools

Privacy Ref looks at three categories of tools to support privacy. First we have the GRC tools that help manage governance, risk, and compliance across the entire enterprise. They are not only focused on privacy, but also examine and help manage all kinds of risk the enterprise might encounter. These tools absolutely support privacy, but the question is if you want to make an investment in a corporate wide tool or you want to stay focused on specific functions and operational areas.

This brings us to the second categories of tools. These Departmental tools focus on solving very specific items for specific areas of the organization. For example, there are number of tools out there that will help you with data discovery or data inventories that would fall into this category.

Finally, there are specific tools to assist the privacy office. These tools  may focus on things such as privacy impact or data protection impact assessments. There are tools available to assist with data subjects rights requests. This category of tools may also assist with attestations, making sure that the different areas of your organization’s claims to be compliant with your privacy program and the laws can be backed up.

Remember the on-going costs

When reviewing tools you need to consider costs. In addition to the acquisition and implementation costs, you need to consider the on-going operational costs associated with each tool. Consider the costs associated with maintaining the tool, adding new functionality to the tool, and the costs to you business areas for using the tool as places to start.

Buy what you need

The attraction of technology to assist with the management of your privacy program is alluring. When pondering what you need, think about the category of tool you are looking for, how it will integrate into your existing business processes, and the on-going costs for maintaining the tool.

  • author's avatar

    By: Bob Siegel

    Bob Siegel, the founder and President of Privacy Ref, Inc., has extensive professional experience in the development and improvement of privacy policies and procedures, the definition of performance metrics to evaluate privacy maturity, and the evaluation of compliance. He utilizes a combination of alignment, adaptability, and accountability strategies to guide organizations in achieving their privacy goals.

    He is a Fellow of Information Privacy (FIP) and a Certified Information Privacy Professional, awarded from the International Association of Privacy Professionals, with concentrations in U.S. private-sector law (CIPP/US), US public sector law (CIPP/G), European law (CIPP/E), and Canadian law (CIPP/C). He is also a Certified Information Privacy Manager (CIPM) and Privacy Technologist (CIPT).

    Siegel is a member of the IAPP faculty, has served on the Certification Advisory Board for the CIPM program the Publications Advisory Board.

    Siegel also writes the blog “Operational Privacy” on CSOonline.com

  • author's avatar

  • author's avatar

    CNIL’s Google Fine of 50 million Euros
    In praise of a privacy compliance program
    Looking to 2019 Privacy Plans
    Preparing your customer-facing staff
    Don’t Forget Basic Communication

    See all this author’s posts

Privacy Ref provides consulting and assessment services to build and improve organizational privacy programs. For more information call Privacy Ref at (888) 470-1528 or email us at info@privacyref.com

Posted on August 27, 2018 by Bob Siegel


« »

No Responses

Comments are closed.


« »

Subscribe to our mailing list

Please fill out the form below.

Required

Want to find out more?

Simply go to the contact page, fill out the form, and someone from Privacy Ref will be in touch with you. You can also send an email to info@privacyref.com or call (888) 470-1528.

News

April 16, 2018

IAPP Training Classes
Privacy Ref is proud to announce that we are an official training partner of the IAPP. You now have the opportunity to learn from one of our knowledgeable privacy professionals using the most respected training content in the industry. The robust interactive training offered, aids in the understanding of critical privacy concepts. The contents of the courses are integral to obtaining your privacy certifications and to educate your new team. Learn more here.

Latest Blog Posts

March 15, 2019

Protecting kids online – are we doing our best?

I’m trying to work through some thoughts about how companies repeatedly take advantage of consumers’ privacy in the US.  The latest being TikTok, a video sharing app acquired from musical.ly, which has agreed to pay $5.7 million to settle allegations that it collected personal information from children – a violation of COPPA or the Children’s Online Privacy Protection Act.  Of note, TikTok is a $75 billion – with a B – dollar startup.  In GDPR terms, the maximum fine for egregious behavior could be 4% of gross revenues or in TikTok’s case $3 billion – with a B – dollars, which is a far cry from the fine that the FTC assessed for their alleged COPPA violations (FTC’s largest ever COPPA fine).

Continue reading this post...

March 13, 2019

In da House (of Representatives)

Recently, the US Congress met to discuss privacy protections from the perspective of a federal regulation. One of the most discussed topics was GDPR and whether it works or not. A lot was said, and I was pretty disappointed with the overall lack of nuance with regards to understanding what privacy is about from sitting politicians. That said, I want to go over some of the arguments.

Continue reading this post...

Other Recent Posts

PRIVACY REF