Privacy by Design (PbD) is a General Data Protection Regulation (GDPR) requirement, but effective implementation requires deep insight into the operation and interconnection of various data collection processes. Thus, PbD can be difficult to document and demonstrate. However, Proteus may help.
Proteus offers a host of complex features, many of which are aimed at helping mainly large enterprises, but its PbD feature could help nearly everyone.
While the solution cannot do PbD for you, it can walk you through a survey of questions related to your data processing and controlling practices, helping you find places where additional controls are needed to ensure privacy is maintained. Your answers to these questions are captured and stored in the tool, as are your justifications for why you are collecting and retaining user data.
All said and done, this feature is comprehensive, intuitive, and will make it much easier to demonstrate your compliance when audit time comes around.
Source: Proteus NextGen Data Privacy at SoftwareReviews, Accessed October 31, 2019
Proteus has many great features that do, indeed, make tracking your privacy compliance obligations – especially across multiple regulations – simpler. And the PbD assistance it provides could help many people. However, if your organization is struggling to demonstrate PbD on its own, this is still not enough of a reason to invest in this solution.
Proteus is a preferred solution of enterprise-sized organizations as the software’s comprehensive feature list helps them manage the complexities and nuances of their data-privacy program. For them, the PbD help is the cherry on top. But for small-to-medium organizations, switching to Proteus probably isn’t necessary. When it comes to PbD, organizations of this size are just as well served by Info-Tech’s own PbD resources, which are less complex, but can fit wider range of business sizes.
The recent Schrems II invalidation of the EU-US Privacy Shield has added a layer of difficulty for organizations that operate across borders, as they now require additional contractual clauses and measures in place to ensure data can transfer freely. Privacy program management vendor Proteus-Cyber offers a streamlined solution with the release of its Transfer Impact Assessment tool.
TrustArc is partnering with BigID to add protection of sensitive data to its roster of data privacy and compliance capabilities. The move closely follows a partnership announced by two other major players in the data privacy and governance space, OneTrust and Integris.
An acquisition borne out of its users’ primary needs, OneTrust’s recent integration with data discovery giant Integris optimally positions the privacy program management software vendor against competitors in the market.
Data intelligence software vendor Alation has made the move to emphasize data governance amongst its solution offerings to make the data catalog a dynamic platform for “a broad range of data intelligence solutions.”
The industry’s first self-service privacy software solution Ethyca receives its second round of investor funding, aptly timed with the release of Ethyca Pro. The privacy management solution provides full automation capabilities for data mapping, data subject requests (DSRs), and consent management for various international privacy regulations.
To further capabilities in the data privacy space, top-tier vendor OneTrust has acquired Integris, another leading vendor within the data discovery and classification sphere. This is a two-part note that focuses on the acquisition and anticipated synergies between the two companies.
AI-powered privacy is here to stay, driven by the innovative team at SECURITI.ai. The company injects automation through AI with its PrivacyOps solution, PRIVACI, taking the effort out of mapping out personal data within its various repositories.
The privacy management software space is rapidly becoming crowded with vendors all looking to add value. 2B Advice has released the most recent version (7.0) of its software, emphasizing the support tools needed to build a privacy-aware culture.
In response to criticism over data collection practices, Google is introducing default deletion of location history in its web and application activities for new accounts.