Data Privacy Metrics: Questions From Our Webinar
Osano’s Privacy Platform can help you comply with the General Data Protection Regulation (GDPR). Osano gets you up and running quickly with capabilities for managing consent, templates and workflows for privacy assessments like Record of Processing Activity (RoPAs), automation for fast and accurate data subject access requests (DSARs), and more.
Not enough time to slog through the GDPR’s 99 different articles? Check out our primer below.
Unlike other data privacy laws, there are no minimum thresholds before a business is subject to the GDPR. If you handle EU residents’ data, regardless of where your business is located, then you’re subject to the GDPR.
Specifically, if you meet any of the following criteria, you can assume the GDPR applies:
It’s easy to get caught up in the letter of the law and forget its spirit. That’s why the text of the GDPR lays out seven principles that embody the ideal that businesses should strive for when processing personal data.
As far as data privacy laws go, the GDPR is known for being highly protective of consumers. That means businesses have a lot of responsibilities to uphold when processing EU citizen data. Here are just a few GDPR requirements.
Each EU member state has its own data protection authority (DPA) that levies penalties and fines. They investigate complaints, provide advice on data protection issues, and determine when the GDPR has been breached. If one of these DPAs finds your business in violation of the GDPR, you could be fined the greater of:
When EU citizens visit your website, you need to provide the appropriate disclosures and consent options based on their local DPA. Osano detects the geolocation of EU visitors and automatically displays the relevant banner, blocking all data trackers until the visitor agrees to their use or to specific categories of data trackers.
When a data subject makes a request under the GDPR, you have to meet that request within 30 days. Responding to DSARs takes time away from more strategic initiatives, and 30 days can go by pretty quick if you experience a high volume of requests. Osano streamlines the subject rights request process, automates common request types, and enables a faster, more accurate workflow.
Osano Vendor Privacy Risk Management can help you identify vendors who can give your customers’ data the protection it deserves. Osano helps you conduct required vendor assessments, tracks vendor privacy changes and new lawsuits, and generates a proprietary Vendor Score to help you assess privacy practices at a glance.
When you work with Osano, we’ll serve as your required GDPR representative. Our subsidiary, Osano Compliance Services International, is based in Dublin, where our local team of privacy experts and attorneys are at your service to help with all EU-related issues.
GDPR compliance can seem pretty intimidating—especially if you’re trying to figure out where to start. Download this checklist to discover 8 steps to build your foundation.
Discover actionable compliance tips straight from our team of legal and privacy experts through our blogs, webinars, eBooks, guides, and more.