Services
Our services help evaluate privacy programs from numerous vantage points
Data
Evaluating sources and types of sensitive data, purpose, and legal basis - from data collection, storage, access, retention, to deletion. Enabling Data Protection Impact Assessments (DPIAs) for new data processing systems, processes, and technologies.
Tracking
Inventory all tracking technologies (including but not limited to cookies), documenting purpose and settings; evaluate mechanisms for user consent (such as consent banner).
International
Identify international transfers (within or across organizational boundaries), data transfer agreements and applicable regulations.
Consent
Validate mechanisms to obtain user consent before collecting and processing personal data; verify opt-out mechanisms, data rectification, access, and deletion requests.
Regulations
Identify relevant regulations - based on data subjects, role(s) in the data processing ecosystem, locations, and industry - and processes in place to ensure adherence.
Preparedness
Evaluate organizational readiness to respond effectively in the event of a data breach - from identification through containment, and notification - across people, process, and technologies.
Accessibility
Assess the major attributes of sites and apps to ensure equal access to privacy rights, as well as compliance with relevant regulations.
Privacy by Design
Assess the integration of privacy principles into design and development process, through privacy impact assessments, training, data minimization, full lifecycle protection, and more.
Protection for Minors
Evaluate data collection from minors, age verification mechanisms, and adherence to applicable regulations such as COPPA.
Policies
Evaluate the accuracy, comprehensiveness, and accessibility of policy contents.