Further Expands Privacy Content Library via New Partnership with UCF to incorporate more than 800 International Regulatory Requirements, Standards, and Guidelines
San Francisco, March 4, 2015 – Today, TRUSTe announced the General Availability of Assessment Manager bringing the benefits of automation to the privacy industry. This new capability of TRUSTe’s industry leading Data Privacy Management Platform transforms how privacy assessments are conducted, enabling privacy teams to better keep pace with the ever-changing business, legal and regulatory landscape.
The recently released TRUSTe Privacy Assessment Benchmarking Study found large enterprises typically conduct 59 Privacy Impact Assessments (PIAs) per year taking 285 hours per assessment. Assessment Manager was developed to greatly reduce the level of effort required for each Privacy Assessment, while improving the overall quality of the data privacy management program.
Assessment Manager provides a highly automated solution following the same assessment methodology used by TRUSTe consultants and analysts. Its capabilities include data collection audits, compliance reviews, gap and risk analysis and workflow management. The recent beta program for Assessment Manager was fully subscribed, reflecting the strong market demand for data privacy management technology solutions among enterprises.
Hilary Wandall, AVP Compliance and Chief Privacy Officer, Merck & Co., Inc. said:
“The magnitude of organizational activities that raise privacy risks and require privacy controls has grown exponentially over the past decade. At the same time, risks, public expectations and regulatory requirements continue to evolve. Privacy professionals need flexible automated tools in order to efficiently and effectively respond to the ever-changing demands they confront in managing privacy within their organizations.”
“Technology has brought sweeping change to the privacy industry with the explosion in data collection. But privacy professionals have been the last to benefit from technology, struggling with spreadsheets and manual templates to conduct multiple assessments and assess growing privacy risk and compliance,” said Chris Babel, CEO, TRUSTe. “Assessment Manager combines TRUSTe’s advanced technology and established assessment methodology with nearly two decades of privacy expertise and powers the global privacy office with a solution built to meet today’s complex data privacy management needs.”
The Privacy Controls Database in TRUSTe Assessment Manager will be enhanced by the integration of IT compliance controls from more than 800 regulatory requirements, standards and guidelines covered within the Unified Compliance Framework (UCF). Many IT compliance controls are vital to effective privacy compliance especially in the areas of technical security controls and data integrity. The UCF includes controls from a wide variety of regulations and guidelines, including: Sarbanes-Oxley Act (SOX), Basel II, Gramm-Leach-Bliley, PCI-DSS Payment Card Industry Data Security Standard, NASD Manual and HIPAA.
Craig Isaacs, CEO Unified Compliance said:
“We are thrilled to work with TRUSTe on Common Control assessments. Through TRUSTe, organizations can realize the goal of ‘audit once, attest multiple times’ to eliminate multiple, redundant audits and end the stranglehold compliance has on employee productivity during assessments.”
The General Availability of TRUSTe Assessment Manager follows a highly successful Beta Program with multiple well-known international brands across a wide range of industries. TRUSTe Assessment Manager is now available as a standalone offering or as a module within the TRUSTe Data Privacy Management (DPM) Platform. For more information, visit Assessment Manager or watch the video. To request a personal demo, contact TRUSTe at 1-888-878-7830.
About Unified Compliance and the UCF
Since 1992, Unified Compliance has developed ground-breaking tools to support IT best practices, with a focus on solutions and processes that further the science of compliance, including harmonization methods, metrics, systems continuity and governance. The United Compliance Framework (UCF) was created by Dorian Cougias and his research partner, Marcelo Halpern of the international law firm Perkins Coie, which oversees all legal aspects of the UCF. Unified Compliance was recently granted the first-ever patent for a Governance, Risk, and Compliance (GRC) framework. The UCF was honored with a 2014 GRC Technology Innovation Award by independent GRC analyst firm, GRC 20/20. More information can be found at www.unifiedcompliance.com.