With more than 1,000 companies now using TRUSTe Assessment Manager to assess and manage privacy compliance risk, TRUSTe announced today that version 3.0 of the award-winning solution is now available. The Assessment Manager 3.0 release introduces a host of new features including support for TRUSTe managed assessments, increased collaboration, enhanced reporting, an expanded privacy template library, and streamlined project workflow. The new features enable businesses of all sizes and privacy maturity to address emerging privacy challenges including Privacy Shield, the General Data Protection Regulation (GDPR), and vendor risk.
Marcus Morissette, eBay Global Privacy Officer and Privacy Counsel said: “eBay is dedicated to meeting the privacy expectations of both our employees and consumers. We know that the privacy landscape is a fast-moving one which is why we selected TRUSTe Assessment Manager as the foundation of our enterprise PIA process to stay ahead of business change and meet the needs of the EU GDPR. TRUSTe has one of the most advanced PIA solutions on the market – it’s specifically built for privacy teams. We’re excited about the organizational awareness Assessment Manager is creating and the continued evolution of the solution.”
Launched in March 2015, Assessment Manager is a SaaS technology solution and part of the comprehensive TRUSTe Data Privacy Management Platform, providing privacy professionals with solutions to manage all phases of their privacy program, from assessing risk to remediating gaps, to ongoing monitoring and compliance reporting.
Assessment Manager 3.0 supports new TRUSTe managed assessment delivery options in addition to the standard self-service option, providing additional flexibility for organizations who want guidance managing their assessments. The managed assessment option combines the powerful, easy-to-use Assessment Manager technology with the TRUSTe team of privacy experts and proven methodology to deliver a solution that can be tailored to meet any client need. The option has proven attractive to smaller organizations who don’t have the resources to staff a privacy team as well as larger organizations who need help jumpstarting their program.
Sean Cohen, COO of AWeber said, “We develop and run web-based tools that help businesses grow by staying in touch with customers and prospects through opt-in email. Aligning with the requirements of Privacy Shield is critical for our business which is why we’ve worked with TRUSTe to prepare for our filing. As champions of smarter and more efficient ways to exchange information, we appreciate how Assessment Manager was able to enhance the assessment experience and streamline our communication with our Privacy Solutions Manager.”
Assessment Manager is being used by companies across a range of industries, including Tech, Pharma, CPG, Healthcare, Oil and Gas, Insurance, and many more. A sampling of clients includes ADT, eBay, Merck, Rackspace, Transport for London and Xiaomi.
Assessment Manager 3.0 is available today starting at $1,000 per month. For more information visit truste.com/assessment-manager or call 888- 878-7830.
On August 1, 2016 the U.S. Department of Commerce (DOC) started accepting self-certifications for compliance with the Privacy Shield Principles. A number of companies have already started the process to self-certify with the DOC to take advantage of the grace period offered to early adopters of the Principles to get contracts with third parties updated.
The grace period works like this – if a company self-certifies to Privacy Shield within the first two months of the DOC accepting certifications (August 1 – September 30), those companies will be given an additional nine (9) months to get their contracts with third parties updated to meet Privacy Shield requirements. So if a company certifies to Privacy Shield on September 1st, they have nine (9) months from that date to get their third party contracts updated. During that time, the Notice and Choice Principles apply to transfers to third parties. The grace period only applies to the Accountability for Onward Transfer Principle. The company needs to be in full compliance with the remaining Principles to self-certify.
Companies self-certifying Privacy Shield compliance with the DOC after September 30th will need to be in full compliance with all the Principles including Accountability for Onward Transfer and must be able to provide a copy of the privacy provisions in their contracts to the DOC upon request. This means, a company must have all their ducks in a row (including updating contracts) before they self-certify.
For more information on TRUSTe’s Privacy Shield Solutions visit EU-U.S. Privacy Shield Solutions or call on 1-888-878-7830.
Following formal adoption today of the EU-U.S. Privacy Shield, TRUSTe has announced a full set of solutions for companies to address the assessment, verification and dispute resolution requirements in the new framework. TRUSTe will help companies to review compliance with the new Privacy Shield principles for transfers of customer and HR data out of the EU, prior to self-certification with the Department of Commerce. Companies choosing to use TRUSTe technology for handling customer disputes will be entitled to display a new “Powered by TRUSTe – Privacy Feedback Button”.
The EU-U.S. Privacy Shield is the new international data transfer framework published in February to replace Safe Harbor. The new framework requires that companies meet stronger obligations to protect the personal data of Europeans and introduces stronger monitoring and enforcement by the US Department of Commerce (DOC) and the Federal Trade Commission (FTC). TRUSTe will amend its certification standards to reflect the changes. The Department of Commerce is expected to start accepting submissions to the program from August 1.
TRUSTe Solutions for EU-U.S. Privacy Shield
TRUSTe is offering three separate packages to support companies in assessing and verifying that their data protection practices are compliant with the Privacy Shield principles ahead of self-certification with the U.S. Department of Commerce. The Assessment Package and Verification Package can include customer data, HR/employee data or both.
In addition, TRUSTe provides a Dispute Resolution Package, which helps companies to efficiently manage privacy inquiries from customers, and addresses the dispute handling requirements of the EU-U.S. Privacy Shield Framework.
The TRUSTe assessment and verification solutions for EU-U.S. Privacy Shield are managed by a team of privacy professionals using our proprietary assessment methodology and powered by TRUSTe Assessment Manager. This award-winning SaaS-based privacy technology platform provides interactive compliance reviews, centralized on-demand reporting and searchable audit trails.
For more information on TRUSTe’s EU-U.S. Privacy Shield solutions visit www.truste.com/privacy-shield or call on 1-888-878-7830.