GDPR Compliance in the U.S.: What to Know
In 1992, Singapore banned the sale of all chewing gum. But if you...
Read NowThe simple, all-in-one data privacy platform
Manage consent for data privacy laws in 50+ countries
Streamline the DSAR workflow
Ensure your customers’ data is in good hands
Gain insights with privacy assessment templates and workflow management
Discover how Osano supports CPRA compliance
Learn about the CCPA and how Osano can help
Achieve compliance with one of the world’s most comprehensive data privacy laws
"I have read and agree to the terms and conditions” may well be the most common lie in the history of civilization.
How many times do you scroll and click accept without a second thought? You’re not alone. Not only they go unread, but they also include a self-updating clause requiring you to go back and review those documents for changes. You’re agreeing to any changes, and their consequences, indefinitely.
Employees regularly provision services with self-updating agreements, and enterprise agreements often include external references. Most operational protocols and laws require you to monitor your vendors. But if their agreements are self-updating, how can you effectively follow them for updates? Some vendors do send updates, but often it’s impossible to understand what has changed. Without Osano, it’s like trying to compare two Microsoft Word documents without change tracking enabled. Osano makes it easy for you to track changes and adequately understand your risk.
You promised your customers that you store data for 12 months. A vendor updated its policies to reflect an 18-month retention. Now you're faced with a choice in order to stay compliant. Either end the vendor relationship or update your statements to reflect reality. If you don't know, you can't.
If you’re unsure whether you're keeping up with your vendors, chances are you're not. On average, vendors change their policies once per month but notify their customers only once per year. Osano alerts you to major and minor changes instantly, so you're always aware of your vendors’ practices.
The likelihood is strong that the vendors you're doing business with today have evolved since you originally signed up for their services. So have their policies. Travel back in time and review the policies that you agreed to and see in an instant exactly how much those agreements have changed.
The self-updating document is widespread in the SaaS world. In recent years there has been a trend towards vendors emailing a notice to users stating, "We've updated our privacy policy" or something similar. Fewer than 25% of vendors send these notices — fewer than that point out what has been updated.
Even if the notice includes a summary, it's typically a sanitized friendly summary of changes that's gone through the marketing department. It usually does not include a statement around how the changes can impact your specific business.
Counting on vendors to self-report in an accurate, timely, and transparent manner is irresponsible. Would you trust a restaurant to do its own health inspection? Then why trust a vendor to do its document inspection?
Many enterprises mistakenly believe they do not need to track policy documents since they signed a separate contract for an enterprise service. Most of these contracts refer to external policies.
Even worse, many also include a self-updating clause for specific sections with the responsibility to monitor being put on you the customer. Are you monitoring these policy changes? Osano can do it for you.
Companies that show their customers that they take privacy seriously will earn their trust and loyalty. Compliance with data privacy laws can feel like a burden, but what if it were easy and could boost your bottom line? What if you could sleep at night knowing that we have your back? Wouldn't that be great?
Instantly helps your website & apps become compliant with every privacy law in the world in 42 languages!
Easily manage one or one million data subject/subject rights requests.
Automatically detect, categorize and search your data - wherever it lives.
Access the privacy ratings for more than 14,000 companies and quickly understand your risk.
Get alerted about new or changing privacy laws along with advice on how to prepare.
Conduct, manage, and track privacy assessments (including DPIAs, RoPAs, and more) from a central, secure location.
Get up and running quickly with document templates such as privacy policies & cookie policies for your website.
Get access to a team of privacy experts who can help you build your privacy program.
Comply with GDPR Article 27 by appointing Osano as your representative in the UK & EU.
Now, with Osano Privacy Legal Templates you can get started faster by leveraging templates generated by our global team of privacy experts.
Capture data subject rights requests with the convenience of email and the efficiency of a dedicated intake form.
We've reworked and redesigned Osano Subject Rights Management and Data Discovery, unifying them into a single, seamless experience and creating automation to save you time.
Privacy regulators at the CNIL in France recently declared that Google Analytics violates GDPR. Osano’s new block list feature can disable Google Analytics in France to keep you compliant while allowing you to use Google Analytics in regions where it is still legal.
Customize DSAR forms with conditional fields, serve consent banners in additional languages, use 28 new integrations for Data Discovery, and more! Check out our latest product announcement blog for demos, links, and more information.
Osano product & engineering teams have been hard at work. View the full list of all product updates.