The EU-US Privacy Shield Framework requires that companies meet obligations to protect personal data. Now more than ever, companies need guidance to ensure requirements are met.
Demonstrating EU-US & Swiss-US Privacy Shield Compliance through EU-US Privacy Shield self-certification should be a critical component of your global compliance strategy. Your customers and business partners expect you to have a legally approved solution in place and regulators require that you can demonstrate compliance.
We offer different solutions to provide the level of EU-US Privacy Shield support that your organization needs – Verification, Assessment and Dispute Resolution. We can review compliance for customer data, employee data, or both.
The Assessment phase helps identify and mitigate privacy risks and also provide access to a range of other services.
The first step is to define the assessment scope by business units, product/service lines, and digital properties (websites, apps, cloud platforms). A member of our Global Privacy Solutions team works with your team to efficiently guide discovery of necessary information, including relevant data flows and evaluation of your privacy policies and practices against relevant standards.
A findings report is delivered which includes a gap analysis, risk summary and remediation recommendations. The report outlines actionable steps required to achieve compliance.
The Verification phase ensures all required remediation changes have been completed prior to filing your application with the Department of Commerce.
Rely on us to help you remediate gaps in your privacy programs, and validate that your privacy statements both reflect your privacy practices and are consistent with applicable standards.
We provide authorization to list TRUSTe as third-party verification for your Department of Commerce filing and registration record.
Guidance to prepare for the EU-US Privacy Shield registration process.
As proof of TRUSTe Verification, an official Letter of Attestation can be shared with your business partners, providing your organization with competitive differentiation.
After completing the required changes, we authorize your use of the TRUSTe Verified Privacy seal for display on applicable digital properties. The seal is hosted and linked to a TRUSTe Validation Page to provide real-time verification along with an easy-to-understand consumer notice that you meet globally recognized privacy requirements.
Ongoing compliance monitoring is provided throughout the term of the agreement. Access is provided to privacy experts for ongoing policy guidance along with educational webinars, events, whitepapers, client advisories, privacy tips and research.
Access to our third-party dispute resolution service, which helps efficiently manage privacy inquiries from customers and addresses dispute handling compliance requirements.
All assessment work and supporting documentation is available in a searchable, central repository – providing a way to respond to inquiries and demonstrate compliance for internal / external audits.