Five minutes and one line of JavaScript on your website can instantly make your website compliant with the data privacy laws of 40 different countries. Osano intelligently blocks unsanctioned third-party cookies and displays consent dialogs in any of 42 native languages.
Consents and revocations are recorded in Osano's private quantum blockchain. This record is searchable by you, allowing for cryptographically verifiable proof of consent in the event of a data subject request.
Easily manage 1 or 1,000,000 data subject requests. Osano makes it easy to verify a data subject's identity, assign inbound requests to the appropriate owner, delegate data source retrieval, and deliver the results to the data subjects in the time as required by law.
Osano's team of CIPPs and attorneys reviews and objectively grades the privacy practices of more than 14,000 vendors. We use a proprietary 163 item ontology that maps closely to NIST and ISO privacy standards.
Plus, when vendors adjust their practices, Osano's attorneys re-review them. What you get is an easy to understand breakdown of where each vendor is doing well, where they are doing poorly, and with whom they share data.
Data is at the heart of your business, and understanding what data you have, where it lives, and who has access to it is a critical part of privacy law compliance. Osano’s AI-driven Data Discovery easily and automatically finds, classifies and evaluates all your data across every one of your systems.
Conducting regular privacy assessments is a core practice for every well-run privacy program. Osano gets you started faster and keeps you on-track by automating your assessment workflow. From Data Privacy Impact Assessments (DPIAs) to Records of Processing Activities (RoPAs) and more, Osano provides pre-made templates that let you manage and store your assessments in a centralized, purpose-built tool.
Article 27 of the GDPR requires in-scope companies to maintain a physical presence in the EU. This GDPR representative is required for receiving correspondence from EU authorities and for data subjects to mail requests. Failure to maintain this physical presence can result in penalties and fines.
Osano International Compliance Services LTD, our Irish subsidiary, maintains an office in Dublin. We provide dedicated digital mail forwarding and a team of data privacy-focused attorneys who are ready to help you should the need arise.
With the Osano GDPR Representative feature, you simply update your GDPR statement to reflect Osano as your representative. Receipt of new mail automatically triggers alerts to you, and the scanned documents are available to you for download.
When a vendor changes their policies such as GDPR, Privacy, Terms and more, they may or may not tell you. If they do notify you, they may or may not explain what changed.
Osano keeps a watchful eye on your vendors’ published compliance documents, crawling and comparing nightly. We maintain copies of historical versions, alert you when changes occur, and make it easy to see what has changed between two documents by using red and green highlights.
Your vendors may state they are following certain protocols, but do they do as they say? The first place that you'll find evidence of failure to comply is in the summary of a lawsuit filed against a vendor. Osano monitors more than 220,000 lawsuits in federal, state, and district courts on your behalf for suits against your vendors. We provide timely updates to help you understand whether vendors are honoring their agreements.
Although large companies likely can withstand expensive litigation, the same isn’t always true for smaller companies. If you're relying on a smaller vendor that gets bogged down in litigation, you usually won't find out until it's too late.
Regulatory compliance requirements are complex and ever-changing. Between GDPR, the California Data Privacy Law, and countless other privacy and compliance laws under consideration, it’s impossible to keep up.
Osano does it for you! We monitor international, federal, and state legislatures for new laws. Then we alert you of upcoming changes and requirements that may impact your business.
We get it. Sometimes you want to talk to a real, live person. Osano's team of privacy experts are available in the application to answer your questions and provide general guidance around best practices and laws.
Ask questions about best practices, how to handle PII, what qualifies as PII, advice on responding to data subjects, or even just get an opinion about your own privacy policy.
Build privacy into your applications and workflows. One call to the Osano API from within your application automatically records which fields are being stored and which vendor they have been shared with.
All PII is encrypted using a one way SHA-512 hashing algorithm with a salt that is unique to each Osano customer. This means that should you choose to optionally send any PII into the Osano API, it is not reversible.
The PII Tracking API is highly scalable and can handle recording of more than one billion records per day.
California’s CPRA and Virginia's VCDPA are 2 new US privacy laws going into effect on January 1. The new laws may be complicated, but we’ve updated our product to make complying with them simple.
Now, with Osano’s new Assessments product, you can conduct, manage, and track privacy assessments, including DPIAs and RoPAs, from a central, secure location.
Capture data subject rights requests with the convenience of email and the efficiency of a dedicated intake form.
We've reworked and redesigned Osano Subject Rights Management and Data Discovery, unifying them into a single, seamless experience and creating automation to save you time.
Privacy regulators at the CNIL in France recently declared that Google Analytics violates GDPR. Osano’s new block list feature can disable Google Analytics in France to keep you compliant while allowing you to use Google Analytics in regions where it is still legal.
Osano product & engineering teams have been hard at work. View the full list of all product updates.