Organizations face increasing privacy risks due to the growing volume, variety, and velocity of personal data collected, processed, and shared across digital platforms (ChatGPT)
- Fully understand applicable local & international laws that govern your data
- Apply Data Classification Standards stringently
- Contractually obligate 3rd party privacy risk to your data
- Leverage SOC 2 report findings and track remediation actions
- Minimize collecting irrelevant personal data and retention exposure risk.
- Pressure test website privacy for cookies, consent, collection and data subject request process
- Fortify Other ITGC – see SUCOP
- Can you IDENTIFY (NIST CSF) all customers data collected from all sources.
- Are you able to respond effectively & efficiently to a data subject request
- In an event of a data breach, can you respond & recover per RTO & RPO
- Do you notify & communicate of data breaches resulting in exfiltration of customer data as REQUIRED.
